My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
01/12/2021
CBCC
>
Meetings
>
2020's
>
2021
>
01/12/2021
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/11/2021 10:50:54 AM
Creation date
2/11/2021 10:49:21 AM
Metadata
Fields
Template:
Meetings
Meeting Type
BCC Regular Meeting
Document Type
Agenda Packet
Meeting Date
01/12/2021
Meeting Body
Board of County Commissioners
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
113
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
01/12/2021 12.E.1. <br />,s�wv—� <br />� K What is Extended Detection and Response <br />• EDR is an integrated end point security solution that combines real-time <br />continuous monitoring and collection of endpoint data with rules -based <br />automated response and analysis capabilities to enable cyber security teams to <br />quickly identify and respond to threats. <br />• The primary functions of an EDR security system are to: <br />• Monitor and collect activity data from end points that could indicate a threat. <br />• Analyze that data to identify threat patterns. <br />• Automatically respond to identified threats to remove or contain them, and to notify <br />cybersecurity personnel. <br />• Provide forensics and analysis tools to search for/research suspicious activities. <br />• It is possible to automate the EDR system response to many, but not all, of the <br />alerts generated by end points. <br />• To ensure that all alerts are responded to appropriately the EDR system must be actively <br />monitored <br />1/12/2021 12.E.1. <br />0 EPP & EDR Upgrade Products Considered <br />• IRC IT staff reviewed a number of EPP and EDR tools from various suppliers <br />• The list software products considered for recommendation was reduced to the <br />list below because these particular products each met all of the criteria of an EDR <br />solution. <br />1. Sentinel One <br />2. Carbon Black <br />3. Crowdstrike <br />4. GreyMatter <br />5. Rapid? <br />6. Secureworks <br />• Of the products reviewed the Sentinel One product was deemed to best meet <br />the County's requirements based on a combination of functionality and price <br />1/12/2021 12.E.1. <br />
The URL can be used to link to this page
Your browser does not support the video tag.