If you have a computer and you upgrade from Windows 7 to Windows 10, or you upgrade your agent from version 6 to 7, it creates a new instance in there instead of updating the information. There are probably a dozen queries in there that really focus on what I need to focus on, but they are not always easy to find the first time through." "The thing I hate the most, which they have not fixed, is when it creates duplicate entries within a console. There isn't enough information to help us with what we're looking for and why we are looking for it with this query. Cisco should understand the need for continuous updates on the custom Cisco exclusions and the custom applications that come out-of-the-box with the AMP for Endpoints." "In Orbital, there are tons of prebuilt queries, but there is not a lot of information in lay terms. #Malwarebytes vs avast web protection softwareBecause with a lot of software now, you don't need to do that and shouldn't need to be rebooting all the time." "We had a lot of noise at the beginning, and we had to turn it down based on exclusions, application whitelisting, and excluding unknown benign applications. This was always a bit of an inconvenience and a bug. Previously, the connector had an issue, where almost every time it needed to be updated, it required a machine reboot. "The connector updates are very easily done now, and that's improving. It works because I have never been infected since I have been using this solution. This is the biggest advantage of this product. All the scans are done in the background. It works in the background and doesn't interfere with my daily work. It does not slow down the computer like other solutions." "The valuable features are device control, SONOR, and anti-virus." "I have found the central control console the most valuable feature." "Its ease of use in deploying it and regular updates are most valuable." "The most valuable feature is that I don't feel that it is there. Symantec is providing all such features in the basic plan, whereas when we last checked, such a feature was not available in the basic plan of Malwarebytes." "The performance of Symantec End-User Endpoint Security is very good. It is very quick." "Device control is most valuable. "The initial setup is very simple and straightforward." "Its response time is the most valuable. What you would do otherwise would be very risky and tedious." If you can do that in a secure sandbox environment, that's an invaluable feature. We're trying, for example, to determine, when people send information in, if an attachment is legitimate or not. It allows for research into a threat, and you can chart your progress on how you're resolving it." "The ability to detonate a particular problem in a sandbox environment and understand what the effects are, is helpful. #Malwarebytes vs avast web protection how toThis helps you understand and nail down what the threat is and how to fix it." "It is extensive in terms of providing visibility and insights into threats. Therefore, it gives you great detail, a timeline, and continuity of events leading up to whatever the incident is, and then, after. Then, after the event, something else was launched by whatever the threat was. For example, you have the event, but you see that the event was launched by Google Chrome, which was launched by something else. You can see what other applications were incorporated into the execution of the threat. You can see what happened after the threat. You can get onto the device trajectory to look at a threat, but you can also see what happened prior to the threat. This greatly maximizes our security operations." "If somebody has been compromised, the question always is: How has it affected other devices in the network? Cisco AMP gives you a very neat view of that." "The most valuable feature is signature-based malware detection." "The entirety of our network infrastructure is Cisco and the most valuable feature is the integration." "The visibility and insight this solution gives you into threats is pretty granular. With SecureX, we are able to pull all those applications into one pane for visibility and maintenance. Additionally, we are using the Cisco SecureX platform, as we were a beta test for that new solution. Because we do have the Email Security appliance and it is integrated with Threat Response, we have everything tied together. This is key to our security and maximizing operations. We have a Cisco Enterprise Agreement with access to Cisco Email Security, Cisco Firepower, Cisco Stealthwatch, Cisco Talos, Cisco Threat Grid, Cisco Umbrella, and also third-party solutions. And on the scalability side, we can integrate well with the SIEM orchestration engine and a number of applications that are proprietary or open source." "Integration is a key selling factor for Cisco security products. "Among the most valuable features are the exclusions.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |