• Support
  • Forums
  • Blogs

2016 Antivirus / Endpoint Protection Platforms

michael.pottermichael.potter

Little green alien
+5
Are you researching EPP's to replace your current Vendor?

What have you found to be the best solution for your company, and are you using EDR / Next Gen systems?

Companies that I have reviewed / demoed so far:

Carbon Black/Bit 9 - No cloud based management, Interface is too intensive and would require dedicated resources to babysit.
CrowdStrike - Currently lacks official "AntiVirus" which is required by PCI requirements
Digital Guardian
- Beyond our budget, DLP focused with EDR. Does not have Antivirus.
Tanium - Not an Antivirus replacement, focused on Detection and Response, lacks automated remediation.
Cylance - Base features but does the job of Antivirus with PCI and AV-Test certified Antivirus replacement. Very impressed, but looking for more features.

EPP's to check out:

TrendMicro
Bitdefender
Sentinel One
Cybereason

What do you all think? Would love to get your feedback!

Share post:

Comments

  • A couple of my SMB clients use Bitdefender Advanced Business Security.

    It has an easy to use cloud management interface, is easy to deploy and is very affordable.

    After installing it found a few trojans that had gone previously undetected with the previous solutions. It is also very lightweight and users do not complain of any performance degradation..
    michael.potter
  • @michael.potter, Just want to clarify that the PCI DSS does not require specific products to be used for compliance.  There is no such thing as an "official "AntiVirus"".  A merchant or service provider is free to meet the PCI requirements however they like with whatever product they wish.  If a merchant or service provider can demonstrate to a QSA who is auditing them that their solution meets the PCI requirements, and their acquirer and the card brands accept the report on compliance, then that solution is ok to be used. 

    If you have questions about CrowdStrike's suitability for use to address the PCI requirements, please see https://www.crowdstrike.com/services/compliance/ or contact a CrowdStrike rep.
    michael.potter
  • @michael.potter, Just want to clarify that the PCI DSS does not require specific products to be used for compliance.  There is no such thing as an "official "AntiVirus"".  A merchant or service provider is free to meet the PCI requirements however they like with whatever product they wish.  If a merchant or service provider can demonstrate to a QSA who is auditing them that their solution meets the PCI requirements, and their acquirer and the card brands accept the report on compliance, then that solution is ok to be used. 

    If you have questions about CrowdStrike's suitability for use to address the PCI requirements, please see https://www.crowdstrike.com/services/compliance/ or contact a CrowdStrike rep.
  • CrowdStrike are a pretty amazing solution for AV/EDR and very simple to deploy. The McAfee ePO Platform is a solid one as well but the cloud offering is not stellar - On prem is generally seen as the way to run this suite.
Sign In or Register to comment.