COVER
STORY
BUZZ
Vo l u m e 3
Issue 10
Vo l u m e 3
Issue 10
COVER
STORY
Z Z U B
3. Primary capability
If you are using an endpoint security solution, what is the primary
capability that you are using?
60%
53.19%
50%
40%
30%
28.09%
18.72%
20%
10%
0%
46
EPP – Endpoint
Protection Platform
EDR – Endpoint
Detection and Response
Both
EPP & EDR
Earlier, there were two distinct areas
(and types) of endpoint protection, but
the line between the two is blurring.
Most organizations (53.19%) prefer
to have both EPP and EDR solutions.
And the vendors are responding
by offering blended solutions that
offer the best of both worlds. The
preference for organizations is an
integrated solution with a single
pane for monitoring all endpoints.
47
4. Managed Services
Does the endpoint
security solution that you
are using also include
Managed Endpoint
Detection Services?
Yes
62.55%
No
37.45%
Managed Endpoint Detection services are highly
favored (62.55%). Traditional players like Symantec,
as well as new entrants like CrowdStrike, have been
offering managed services. These services run from
the cloud and employ advanced analytics, machine
learning capabilities, and artificial intelligence
to secure endpoints. Some of the services include
managed 24x7 threat hunting, remote investigation,
and pre-authorized remediation. Using advanced big
data analytics, a team of Security Operations Center
analysts actively detect, validate, and remediate
CISO MAG | November 2019
stealthy attacks. Such services are now in demand
and are fast replacing traditional and outdated anti-
malware solutions running on endpoints.
Vendors selling endpoint protection solutions are
now offering an extra layer of protection (and added
value) through a managed service offering for
advanced threat protection. We see in the next data
point and chart that 22.98% of organizations leave
the management and monitoring of endpoints to a
managed service offered by the product vendor.
CISO MAG | November 2019