ENDPOINT DETECTION AND RESPONSE (EDR)
What is EDR?
is a cybersecurity technology that addresses the need for continuous monitoring and response to advanced threats.
It is a subset of endpoint security technology and a critical piece of an optimal security posture. EDR differs from other endpoint protection platforms (EPP) such as antivirus (AV) and anti-malware in that its primary focus isn’t to automatically stop threats in pre-execution phase on an endpoint. Rather, EDR is focused on providing the right endpoint visibility with the right insights to help security analysts discover, investigate and respond to very advanced threats and broader attack campaigns stretching across multiple endpoints. Many EDR tools, however, combine EDR and EPP.
Today’s advanced threats are designed to bypass traditional cybersecurity defences and compromise sensitive corporate data by exfiltrating or encrypting it for ransom.
Effective detection and response solutions seek out these advanced threats and eliminate them before they compromise data.
Trend Micro has integrated layered advanced detection and response techniques into its Endpoint Protection Platform to leverage its automation and response capabilities. Machine learning (both pre-execution and run-time), vulnerability protection, behavioral analysis, application control, and other advanced techniques are designed to work seamlessly with your endpoint protection.