Endpoint detection and response (EDR) tools detect, identify and react to threats, shifting security from a reactive incident response approach to a proactive continuous monitoring approach. These tools have become an important component in modern security architectures.
While advanced persistent threats and customized targeted malware attack toolkits are bypassing traditional signature-based antivirus solutions, an EDR solution collects and correlates endpoint data across the enterprise for deep detection, analysis, investigation, reporting and alerting, providing real time visibility into what is happening on the network across all steps of the cyber kill chain.
Endpoint detection and response tools compliment existing security controls such as signature based detection (AV), data loss prevention (DLP) solutions, security information and event management (SIEM), network forensics tools (NFT), and advanced threat defense (ATD) appliances.
For more information on ComplyTec’s Endpoint Detection and Response solution click here.