Symantec Endpoint Detection and Response

Symantec EDR is a specialized solution for detecting, analyzing, and responding to complex threats at the workstation level. Unlike traditional antivirus, EDR provides deeper visibility into system behavior, enabling security teams to detect and neutralize cyberattacks at an early stage.

Key Features

• Real-time Monitoring
• Threat Hunting
• Attack Chain Analysis
• Quarantine, delete, and automatically respond to incidents
• Advanced cross-endpoint search for signs of attack (IoC)
• Data analysis with advanced Cloud Analytics engine

Technical Features

Symantec EDR integrates with SIEMs and other SOC tools. It can also detect and prevent unknown threats by connecting to Broadcom’s global Threat Intelligence Network.