AV product - servers, vm's ect

LizardKing

LizardKing

LizardKing

Soldato
Joined
18 Oct 2002
Posts
8,253
Location
The Land of Roundabouts
Just wondering what people use these days, currently we have sophos and its up for renewal soon.

Traditional we just use the endpoint protection all round but now it seems to be the trend to have an appliance to offload the processing to leaving an agent less deployment.

Were only a small outfit with plenty of VM's but only the basic Vsphere essentials deployed and a few free esxi servers scattered round so don't feel we could really make use of vshield ect.
 
Pretty much everything I've ever heard about the ESXi integrated AV solutions is that they are TERRIBLE with a capital T. 100 desktops and 50 servers is not inconsequential. I'd get SEP, depending on what price you can get. An outbreak of something like ransomware would absolutely cripple the business, so it's worth investing a little bit.
 
I actually work for a cyber security software distributor and what we sella lot of is Webroot for standard enterprise companies. We do have a premium end endpoint protection level product called confer that is truly high end but comes with the premium price as well. Both work on a very lightweight sensor on the endpoint itself with a cloud management console.

If you are interested in either feel free to pm me and I will be able to assist. Perhaps even give a good level of discount :)

Both are vastly superior to your traditional endpoint products like Sophos which rely on archaic signature based detection, which are pathetically ineffective against modern APTs which are oftern specifically targeted and hence unclassified and/or polymorphic. Both utilise both signature and behaviour based detection methods, among other capacbilities.
 
Last edited:
rotor said:
Pretty much everything I've ever heard about the ESXi integrated AV solutions is that they are TERRIBLE with a capital T. 100 desktops and 50 servers is not inconsequential. I'd get SEP, depending on what price you can get. An outbreak of something like ransomware would absolutely cripple the business, so it's worth investing a little bit.
Click to expand...

Oh there's no question it wont be renewed :) or at least with something of equivalent standing!

kitkat9933 said:
I actually work for a cyber security software distributor and what we sella lot of is Webroot for standard enterprise companies. We do have a premium end endpoint protection level product called confer that is truly high end but comes with the premium price as well. Both work on a very lightweight sensor on the endpoint itself with a cloud management console.

If you are interested in either feel free to pm me and I will be able to assist. Perhaps even give a good level of discount :)

Both are vastly superior to your traditional endpoint products like Sophos which rely on archaic signature based detection, which are pathetically ineffective against modern APTs which are oftern specifically targeted and hence unclassified and/or polymorphic. Both utilise both signature and behaviour based detection methods, among other capacbilities.
Click to expand...

Just looking at Webroot now, looks very interesting, just a shame you can only take the reviews with a pinch of salt as they all seem to have an agenda to push.
How does its pricing work? ie does in differentiate between desktop / server OS? I might take you up on that offer if it comes in similar to sophos (~£16 per endpoint currently) :)

cheers!
 
LizardKing said:
Oh there's no question it wont be renewed :) or at least with something of equivalent standing!



Just looking at Webroot now, looks very interesting, just a shame you can only take the reviews with a pinch of salt as they all seem to have an agenda to push.
How does its pricing work? ie does in differentiate between desktop / server OS? I might take you up on that offer if it comes in similar to sophos (~£16 per endpoint currently) :)

cheers!
Click to expand...

I can defiantly beat £16 per endpoint. Pricing is per endpoint, doesn't matter whether it's desktop or server. If you're interested send me a trust message.
 
We use Kaspersky for Virtualisation (vSheild) for our VDI (700 VMs), it seems to work good and it's cheap. Our VDI is a pretty closed system that has very little changes or upgrades each year, so once setup it just works. I've never fancied having vShield on server hosts, as losing a host worth of VDI clients wouldn't be so bad, but a misconfiguration on a server host that disconnects or slows everything down could be painful.
 
I'm in the exact same situation, the company I work for has Sophos which is up for renewal this week. I'm thinking of renewing the Sophos Cloud - I like how they've separated the sever and workstation AV to prevent performance issues. They've also bought out SurfRight Hitman Pro so I'm hoping they'll add this malware/ransomware protection into their endpoint product in future... Another solution a friend of mine has deployed and keeps praising is Panda Endpoint Protection, he's been very impressed with it.
kitkat9933 said:
I actually work for a cyber security software distributor and what we sella lot of is Webroot for standard enterprise companies.
We do have a premium end endpoint protection level product called confer that is truly high end but comes with the premium price as well. Both work on a very lightweight sensor on the endpoint itself with a cloud management console.
Click to expand...

The MSP I used to work for sold Webroot, it worked really well with desktops but it wasn't so mature for enterprise environments (performance issues with Citrix/TS farms and server CPU spikes etc). I've looked into these new niche endpoint vendors such as Confer and Cylance, but I'm always wary on how well they'll work with bespoke systems and enterprise applications - I'll wait for them to mature before I deploy them in a 500+ environment :)

LizardKing said:
How does its pricing work? ie does in differentiate between desktop / server OS? I might take you up on that offer if it comes in similar to sophos (~£16 per endpoint currently) :)!
Click to expand...
Webroot: £7 per EP, per year
Sophos Cloud: £10 per EP, per year
(Prices I've managed to get with haggling so far)
 
Last edited:
Brozart said:
I'm in the exact same situation, the company I work for has Sophos which is up for renewal this week. I'm thinking of renewing the Sophos Cloud - I like how they've separated the sever and workstation AV to prevent performance issues. They've also bought out SurfRight Hitman Pro so I'm hoping they'll add this malware/ransomware protection into their endpoint product in future... Another solution a friend of mine has deployed and keeps praising is Panda Endpoint Protection, he's been very impressed with it.


The MSP I used to work for sold Webroot, it worked really well with desktops but it wasn't so mature for enterprise environments (performance issues with Citrix/TS farms and server CPU spikes etc). I've looked into these new niche endpoint vendors such as Confer and Cylance, but I'm always wary on how well they'll work with bespoke systems and enterprise applications - I'll wait for them to mature before I deploy them in a 500+ environment :)


Webroot: £7 per EP, per year
Sophos Cloud: £10 per EP, per year
(Prices I've managed to get with haggling so far)
Click to expand...

Webroot have really improved recently for enterprise environments. The majority of business is through MSP's now. Confer is really good but there is a premium price associated to it, it's had some really big wins recently.

But Panda and Sophos are not even competition to Webroot or Confer, they primarily rely on signature based detection, which with APT's these just doesn't cut it.
 
kitkat9933 said:
Webroot have really improved recently for enterprise environments. The majority of business is through MSP's now. Confer is really good but there is a premium price associated to it, it's had some really big wins recently.

But Panda and Sophos are not even competition to Webroot or Confer, they primarily rely on signature based detection, which with APT's these just doesn't cut it.
Click to expand...

I like Webroot, I used to sell for an MSP myself as they've started partnering with IT management software and offering aggressive pricing discounts. But they are still maturing for enterprise and as a senior engineer who manages that environment I'd rather not risk it. For me I need something that's mature, it may not be a visionary on gartner but it has a vast amount of enterprise level customers and has shown clear progression in development over the last couple of years (moving to a cloud AV and acquiring niche security company SurfRight to improve its malware detection). It's a nice all rounder in my eyes and will supplement the other security in place (Mimecast, Websense/Forcepoint and locked down GPO).

What reseller do you work for in Manchester? Softcat? BlueCoffee?
 
Now got Webroot running a trial on a few machines,
Looks good and easy enough to get up and running, it makes Sophos look like the Michelin man and Sophos isnt exactly bloaty when up and running.
So far so good but with all things AV proof is in it actually stopping something!
That may be a while, I can probably count on 1 hand the amount of actual legit mal/virus that got flagged by Sophos by our endpoints. (thanks to the Proxy/Email gateways)
 
Brozart said:
I like Webroot, I used to sell for an MSP myself as they've started partnering with IT management software and offering aggressive pricing discounts. But they are still maturing for enterprise and as a senior engineer who manages that environment I'd rather not risk it. For me I need something that's mature, it may not be a visionary on gartner but it has a vast amount of enterprise level customers and has shown clear progression in development over the last couple of years (moving to a cloud AV and acquiring niche security company SurfRight to improve its malware detection). It's a nice all rounder in my eyes and will supplement the other security in place (Mimecast, Websense/Forcepoint and locked down GPO).

What reseller do you work for in Manchester? Softcat? BlueCoffee?
Click to expand...

I actually work for the UK distributor of Webroot Distology, not a re-seller.
 
LizardKing said:
Now got Webroot running a trial on a few machines,
Looks good and easy enough to get up and running, it makes Sophos look like the Michelin man and Sophos isnt exactly bloaty when up and running.
So far so good but with all things AV proof is in it actually stopping something!
That may be a while, I can probably count on 1 hand the amount of actual legit mal/virus that got flagged by Sophos by our endpoints. (thanks to the Proxy/Email gateways)
Click to expand...

Would you like some mate rate pricing? :)
 
We are currently looking at Webroot as well. We have been using sophos for our clients for years and years but with the price of webroot and the fact it integrates with Labtech it might be a win win for us.
 
Wizzkidy said:
We are currently looking at Webroot as well. We have been using sophos for our clients for years and years but with the price of webroot and the fact it integrates with Labtech it might be a win win for us.
Click to expand...

Trust me if interested, I should be able to give you a good price :)
 
You must log in or register to reply here.
Back
Top Bottom