Endpoint Security

Updated on 07 Jul 2023

Dark
Light

Article Summary

Share feedback

Thanks for sharing your feedback!

Service Overview

Endpoint Security is a security platform to protect your workloads against threats via signature and behavior-based protections. As a managed service, Expedient maintains the platform, provides alerting and dashboards, and so you can focus on the security of your infrastructure. Clients have full access to view and create dashboards, create custom alerts, and set custom security policies to tailor the platform to the specifics of a client's organization.

Service Features

Pay per endpoint
Prevention, detection, and response capabilities through centralized management
Signature-less malware and ransomware prevention
Whitelist / Blacklist of custom file types, directories and applications
Automated threat hunting and response
Agent-based deployment
Protection on VMs, physical servers and desktops
Easy to use management portal
24x7x365 support for alerting and troubleshooting

Default Deployment Settings

Dedicated management instance
Customized agent for automated deployments
Standard set of dashboards for endpoint monitoring
Standard alert thresholds for anomalous behavior
Alerts configured to Expedient SMC for client communications

Use Cases

Ransomware Protection
File-less Attack Prevention
Malware Prevention
Endpoint data collection
Threat hunting

Responsibility and Accountability Matrix

Endpoint Security Responsibility Matrix
Platform
Task	Expedient	Client	Co-Managed	Co-Managed tasks can be performed by Expedient or Client based on Client's preference
Procure, Install, Configure, Manage and Maintain Hardware	X
Procure, Install, Configure, Manage and Maintain Software	X
Capacity Management & Reporting	X
Management Console User and Access Management			X
Management
Install Agents - Windows			X	Expedient will assist with agent installs
Configure Agents - Windows			X
Install Agents - Linux			X	Expedient will assist with agent installs
Configure Agents - Linux			X
Monitoring
Deploy standard dashboards	X			Clients can create additional dashboards to meet more specific needs.
Create custom dashboards		X
Configure Expedient service integrations	X			Expedient will configure all integrations with Expedient services
Monitoring and alerting for alarm thresholds			X	Expedient will create a set of default alarms, clients can create custom alerts and modify default alerts as necessary
Troubleshoot alerts			X	Expedient services are limited to tasks with the operating system, monitoring agent, and Expedient services. Clients are responsible for application-level troubleshooting

Supported Platforms

Applications/Platforms Supported
Expedient Services Expedient Enterprise Cloud Dedicated Private Cloud vColo Expedient Edge Expedient Enterprise Workspace
Operating Systems (Virtual or Physical) Windows Desktop Windows 7 x86 Windows 7 x64 Windows 8.1 x64 Windows 10 Windows 11 Server Windows Server 2008 R2 x64 Windows Server 2012 R2 x64 Windows Server 2016 Windows Server 2019 Windows Server 2022 Linux RHEL 6.5 - 8 CentOS 6.5 - 8 Ubuntu - 14.04, 16.04, 18.04, 20.04 macOS - 10.13 - 12 Solaris 10 (5.10)

Applications/Platforms Supported

Expedient Services

Expedient Enterprise Cloud
Dedicated Private Cloud
vColo
Expedient Edge
Expedient Enterprise Workspace

Operating Systems (Virtual or Physical)

Windows
- Desktop
  - Windows 7 x86
  - Windows 7 x64
  - Windows 8.1 x64
  - Windows 10
  - Windows 11
- Server
  - Windows Server 2008 R2 x64
  - Windows Server 2012 R2 x64
  - Windows Server 2016
  - Windows Server 2019
  - Windows Server 2022
Linux
- RHEL 6.5 - 8
- CentOS 6.5 - 8
- Ubuntu - 14.04, 16.04, 18.04, 20.04
macOS - 10.13 - 12
Solaris 10 (5.10)

Was this article helpful?

What's Next

How to login to Elastic Endpoint Security with OneLogin

Table of contents