Skip to main content

Explain IT: Season 2, Episode 12 - Endpoint Detection and Response

What is Endpoint Detection and Response?

0:00:00 / 43:05

USP Image (51)

In this episode we look at EDR, or Endpoint Detection and Response. We dig into its past and look at its evolution to what we see today, as well as exploring how it can work for different organisations. Host Michael Bird is joined by Adam Louca, Softcat’s chief technologist for security as well as Russell Humphries, VP of product management for the endpoint security group at Sophos, to discuss the pros and cons that come with the newest generation of endpoint protection software.

  • EDR solutions have been through an evolution. From signature-based antivirus technologies through AI and machine learning to what we see today – solutions that give real context to an attack and an ability to proactively search for attacks.
  • No two attacks look the same, but this next generation evolution of EDR allows organisations to very quickly work out exactly what’s happened and the status of every Endpoint and whether it’s secure.
  • EDR should be seen as an addition to advanced endpoint protection. Organisations need protection - a next-gen endpoint detection platform - as an essential before working out whether EDR is appropriate for them.
  • EDR improves your security by giving you increased visibility, reducing your response time, and your detection time. It gives you data in a quicker and more consumable way.
  • EDR needs man-power to optimise its functionality. An EDR solution requires someone who can understand the data it produces and work with it effectively.
  • The future of security looks to be in integration across vendors and technologies to share data more effectively and create a more secure ecosystem.



Want to know more?