Endpoint Security
  • 07 Jul 2023
  • Dark
    Light

Endpoint Security

  • Dark
    Light

Article summary

Service Overview

Endpoint Security is a security platform to protect your workloads against threats via signature and behavior-based protections. As a managed service, Expedient maintains the platform, provides alerting and dashboards, and so you can focus on the security of your infrastructure. Clients have full access to view and create dashboards, create custom alerts, and set custom security policies to tailor the platform to the specifics of a client's organization.

Service Features

  • Pay per endpoint
  • Prevention, detection, and response capabilities through centralized management
  • Signature-less malware and ransomware prevention
  • Whitelist / Blacklist of custom file types, directories and applications
  • Automated threat hunting and response
  • Agent-based deployment
  • Protection on VMs, physical servers and desktops
  • Easy to use management portal
  • 24x7x365 support for alerting and troubleshooting

Default Deployment Settings

  • Dedicated management instance
  • Customized agent for automated deployments
  • Standard set of dashboards for endpoint monitoring
  • Standard alert thresholds for anomalous behavior
  • Alerts configured to Expedient SMC for client communications

Use Cases

  • Ransomware Protection
  • File-less Attack Prevention
  • Malware Prevention
  • Endpoint data collection
  • Threat hunting

Responsibility and Accountability Matrix

Endpoint Security Responsibility Matrix 

Platform

Task 

Expedient 

Client 

Co-Managed  

Co-Managed tasks can be performed by Expedient or Client based on Client's preference 

Procure, Install, Configure, Manage and Maintain Hardware 

 

 

 

Procure, Install, Configure, Manage and Maintain Software 

 

 

 

Capacity Management & Reporting 

 

 

 

Management Console User and Access Management 

 

 

 X

 

Management

Install Agents - Windows 

 

 

Expedient will assist with agent installs

Configure Agents - Windows 

 

 

 

Install Agents - Linux

 

 

Expedient will assist with agent installs

Configure Agents - Linux

 

 

 

Monitoring

Deploy standard dashboards

X



Clients can create additional dashboards to meet more specific needs.

Create custom dashboards


X



Configure Expedient service integrations

X



Expedient will configure all integrations with Expedient services

Monitoring and alerting for alarm thresholds


 

X

Expedient will create a set of default alarms, clients can create custom alerts and modify default alerts as necessary

Troubleshoot alerts

 

 

Expedient services are limited to tasks with the operating system, monitoring agent, and Expedient services. Clients are responsible for application-level troubleshooting

Supported Platforms

Applications/Platforms Supported

Expedient Services

  • Expedient Enterprise Cloud
  • Dedicated Private Cloud
  • vColo
  • Expedient Edge
  • Expedient Enterprise Workspace
Operating Systems (Virtual or Physical)
  • Windows
    • Desktop
      • Windows 7 x86
      • Windows 7 x64
      • Windows 8.1 x64
      • Windows 10
      • Windows 11
    • Server
      • Windows Server 2008 R2 x64
      • Windows Server 2012 R2 x64
      • Windows Server 2016
      • Windows Server 2019
      • Windows Server 2022
  • Linux
    • RHEL 6.5 - 8
    • CentOS 6.5 - 8
    • Ubuntu - 14.04, 16.04, 18.04, 20.04
  • macOS - 10.13 - 12
  • Solaris 10 (5.10)



Was this article helpful?