TrustRadius: an HG Insights company

Kaspersky EDR Expert

Score8.4 out of 10

13 Reviews and Ratings

Get a Demo

What is Kaspersky EDR Expert?

Kaspersky Endpoint Detection and Response (EDR) Expert provides endpoint protection, advanced detection, threat hunting and investigation capabilities and multiple response options in a single package. It is an EDR solution for IT security teams with more mature incident response processes, enabling them to hunt, prioritize, investigate and neutralize complex threats and APT-like attacks.

Categories & Use Cases

Media

Kaspersky EDR Expert
Kaspersky EDR Expert
Kaspersky EDR Expert

1 / 3

Reviews

What users are saying about Kaspersky EDR Expert.
View all reviews

Kaspersky - intuitive software for endpoint security.

Incentivized
Derek Beutler
Attorney in Legal at Beutler Law P.C. (1-10 employees employees)

Use Cases and Deployment Scope

We utilize Kaspersky Endpoint Detection and Response to help secure our network and proactively prevent cyber-attacks and malicious software from accessing our systems.

Pros

  • Identify and automatically respond to security threats.
  • Provide Real-time issue reports.
  • Quick and easy endpoint deployment.

Cons

  • It would be nice to have more insight into the kill chain of potential infections and malware.
  • Remote interface is a little lacking as to why a file was flagged.

Most Important Features

  • Protect and secure users' computers against hacking, malware, phishing attempts, and viruses.
  • Cloud base remote monitoring.
  • Competitive price point.

Return on Investment

  • Automated deployment options.
  • Cloud based remote monitoring.
  • Realtime notifications.

Alternatives Considered

Norton Small Business

Other Software Used

Clio, CallRail, SignNow

Automating EDR tasks with Kaspersky EDR Expert

Incentivized
Ahmed ElibiaryView profile
Senior Network & Security Administrator in Information Technology at alahly tamkeen (201-500 employees employees)

Use Cases and Deployment Scope

I use Kaspersky EDR Expert as an antivirus and app control and web filter.

Pros

  • App-control
  • Web-filetring
  • Antivirus

Cons

  • OS-integration
  • Cloud-implementation
  • Scripting

Most Important Features

  • App-control
  • Web-filter
  • Out of office policy

Return on Investment

  • Increased endpoint visibility
  • Automating EDR tasks
  • Applications registry
  • Assets visibility
  • Threat hunting

Alternatives Considered

Trend Micro Apex One

Other Software Used

Fortinet FortiGate, Grandstream UCM series IP PBXs

Kaspersky EDR Expert is a Great modern endpoint protection platform

Verified User
Manager (501-1000 employees employees)

Use Cases and Deployment Scope

We're using Kaspersky EDR Expert as endpoint protection, system hardening, exposure management, endpoint detection and response tool. It protects endpoints running Windows and Linux and detects modern threats with low system performance impact and almost no false alarms. Threat Intelligence portal is also very valuable.

Pros

  • Strongest endpoint protection product on the market according to 3rd party evaluation
  • Actionable detection data
  • Sandbox is extremely useful

Cons

  • It would be great to add SOAR product or capabilities into portfolio
  • As for EDR product itself, I haven't ran into any issues

Most Important Features

  • Endpoint protection and system hardening
  • Endpoint detection and response
  • Exposure management
  • Intelligence from a cloud

Return on Investment

  • Best protection on the market and low level of noise allows security guys to focus on what is really important
  • Enrichment and additional detection using sandbox and threat intelligence portal
  • Covering desktops and servers running various OS

Alternatives Considered

SentinelOne Singularity, Sophos Intercept X and Trellix Endpoint Security ENS

Other Software Used

Kaspersky Endpoint Security for Business, Kaspersky Security Awareness, Microsoft Defender for Cloud

One of the largest Russian banks experience with Kaspersky EDR Expert

Incentivized
Verified User
Director (5001-10,000 employees employees)

Use Cases and Deployment Scope

We use it for all of the our workstation and now we are planning to deploy it to servers. We use EDR to get large amount of controls and logs from our hosts. Then we use collected data to determine cybersecurity incidents. Also this product decreases the load to our SIEM-system because the correlation between logs and security events.

Pros

  • Collecting data from windows hosts
  • Correlating collected data and composing incidents
  • Clearing the situation with impacted hosts during cybersecurity incidents

Cons

  • Linux-systems support on the same level like windows systems
  • Untying from Kaspesky ATA
  • AI add to ease the way of profiling the system (it requires 1 FTE to examine all the incidents on 10 000 hosts? too much)

Most Important Features

  • Comprehensive analysis
  • User-friendly interface
  • Russian product:(

Return on Investment

  • The only one value is the risk reduction
  • May be the feeling of additional protection is the second value but I am not sure

Alternatives Considered

Palo Alto Networks Cortex XDR

Other Software Used

Kaspersky Anti Targeted Attack Platform, Kaspersky Endpoint Security, SearchInform DLP, SearchInform FileAuditor, Checkmarx, Tripwire File Integrity Monitoring, Kaspersky Hybrid Cloud Security, ModSecurity, Suricata IDS

A good solution with significant security risks

Incentivized
Verified User
Manager in Information Technology (1001-5000 employees employees)

Use Cases and Deployment Scope

Kaspersky EDR Expert is a new sophisticated EDR system. We used this system to provide endpoint protection, advanced detection, threat hunting and investigation capabilities. It was used by SOC and IT operations for incident response to hunt, prioritize, investigate and neutralize complex threats and APT-like attacks. The business problems we addressed: end-point device security management, end-point protection, threat analysis and investigation, incident process management, protection against APT attacks.

Pros

  • Identify and automatically respond to end-point security threats
  • Protect end-point systems against a broad range of cyber attacks
  • Reduce operational costs to support EDR services

Cons

  • From experience, this systems has not offered a credible defense against potential nation-state cyberattacks
  • From experience, this system has not offered a credible data protection against nation-state cyberattacks
  • Limited visibility into the cyber kill chain for this service
  • From experience, a high rate of false positives
  • Control council needs to be improved
  • Automate patch updates

Most Important Features

  • Low price
  • Guided investigation

Return on Investment

  • Reduced EDR operational costs
  • Reduced capital costs to acquire EDR capability
  • Improved end-point visibility
  • Increased cybersecurity risks for enterprises given limited defense against sophisticated, Nation-based cyber attacks
  • Increased enterprise data risks due Nation-based cyber attacks

Other Software Used

Splunk Enterprise Security (ES), Imperva Web Application Firewall (WAF), Radware Bot Manager

Related Products

Products similar to Kaspersky EDR Expert that may also meet your needs.
All comparisons
Trend Vision One Endpoint Security
CompareLearn more
Symantec Endpoint Security
CompareLearn more
Sophos Intercept X
CompareLearn more
SentinelOne Singularity
CompareLearn more
CrowdStrike Falcon
CompareLearn more
Carbon Black EDR
CompareLearn more
Bitdefender GravityZone
CompareLearn more