Вы находитесь на странице: 1из 34

Kaspersky Endpoint

Security for Business


Evgeny Markovets | Pre-Sale Engineer
evgeny.markovets@kaspersky.com

Kaspersky Endpoint Security


®

for Business
APT

0.1 %
Самый высокий
коэффициент
обнаружения для
9.9 % всех компаний и
MSP / MSSP

Уменьшенный
MTTR
Kaspersky

90
®

Endpoint Security
for Business %
Снижение TCO /
CAPEX
• Сетевая фильтрация, управление портами
• Облачная фильтрация контента
• Защита от файловых, веб, почтовых угроз
Необработанные • Эвристический анализ
данные • Профилактика на основе приговоров EDR
• Endpoint and server hardening

Endpoint Protection + Detection and Response


Предотвращение воздействия • Reputation services
Точка входа • ML based pre-execution detection
• Adaptive Anomaly Control & Response Kaspersky
Предварительное • Vulnerability & Patch Management Endpoint
Вторжение исполнение • Behavioral analysis enhanced by Dynamic ML Security for
• Automatic Rollback
• Access Blocker for network shares Business
Продолжительность
Заражение • Exploit prevention
управления • Ransomware protection
• Fileless threats protection
Горизонтальное Расширенное • Sandbox in roadmap
перемещение • EDR-light in roadmap
обнаружение
• Visibility & near real-time monitoring

Достижение целей Автоматическое


• Centralized antimalware engine
реагирование
• IoC-scan and Yara-rules
• Unique IoA and MITRE mapping
• Retrospective analyzing, event correlation Kaspersky
• Advanced sandbox
Endpoint Detection
• Threat hunting framework
• Incident response (host isolation & etc.) & Response
ЭТАПЫ АТАКИ ПОРЯДОК ЗАЩИТЫ
СЛОИ ЗАЩИТЫ
Не нужно платить больше
Мы не продаем их отдельно за дополнительные $

Снижение TCO
Постоянно обновляемая часть предотвращений
-

PC, Mac, Linux, iOS & Android


Endpoint Protection

Kaspersky

Gartner Peer Insights


Choice.

Читайте отзывы пользователей на:


gartner.com/reviews/market/endpoint-protection-platforms/vendor/kaspersky

The GARTNER PEER INSIGHTS CUSTOMERS’ CHOICE badge is a trademark and service mark of Gartner, Inc., and/or its affiliates, and is used herein with permission. All rights reserved. Gartner Peer Insights Customers’ Choice constitute the subjective opinions of individual end-user
reviews, ratings, and data applied against a documented methodology; they neither represent the views of, nor constitute an endorsement by, Gartner or its affiliates. *All reviews and ratings are current as of February 12, 2019. https://www.gartner.com/reviews/customers-
choice/endpoint-protection-platforms
Endpoint Protection

Gartner Kaspersky

Gartner Market Share: All Software Markets, Worldwide, 2018, 8 April 2019
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions
of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose..
Endpoint Protection

Kaspersky

Gartner 2019
Endpoint
Protection
Gartner Magic Quadrant for Endpoint Protection Platforms, July 2019
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions
of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose..
Most tested. Most awarded. Kaspersky protection.*
Automated Prevention technologies

In 2018 Kaspersky products participated in 88


Score of TOP 3 places

independent tests and reviews. Our products were Some recent awards
awarded 73 firsts and received 77 top-three finishes.
100%
Kaspersky
1st places – 73
Bitdefender Participated in 88
ESET
75%
tests/reviews
TOP 3 = 88%

AVG Avast

50% Symantec
Avira

G Data Trend Micro


25% McAfee
* Notes:

Microsoft • According to summary results of independent tests


F-Secure in 2018 for corporate, consumer and mobile products.

• Summary includes independent tests conducted by:


No. of independent tests/reviews AV-Comparatives, AV-Test, SE Labs, MRG-Effitas, Virus
0% Bulletin, ICSA Labs, PCSL, NSS Labs.
20 40 60 80 100
• Tests performed in these programs assess all protection
technologies against known, unknown and advanced
threats.

• The size of the bubble reflects the number of 1st places


achieved.

© 2019 Kaspersky Lab. All rights reserved. Registered trademarks and service marks are the property of their respective owners.
Kaspersky Hybrid
Cloud Security
Evgeny Markovets | Pre-Sale Engineer
evgeny.markovets@kaspersky.com

Virtualization Security
Evolution of Workload Protection

Kaspersky Hybrid Cloud Security incorporates


2018
KSV and introduces public cloud integrations

nsx 2016
Light Agent for Linux; new platforms and
virtualization technologies support

Release of KSV Light Agent technology


2014
(US patent 9,009,836)

2012 Launch of Kaspersky Security for Virtualization


Kaspersky Hybrid Cloud Security composition

Solution Role Application


Kaspersky Security Center and Integration Server

Kaspersky Security for Virtualization Light Agent


Virtualization Security
Kaspersky Kaspersky Security for Virtualization Agentless
Hybrid
Cloud Kaspersky Security Center with Cloud
Security Configuration Wizard
Public Cloud Workload
Protection Kaspersky Security for Windows Server

Kaspersky Security for Linux

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


-
Почему традиционная безопасность не эффективна?

У каждой виртуальной машины есть агент безопасности: Gotta Gotta


scan scan
• Нагрузка либо на хранилище (локальный вердикт), Gotta
либо на сеть (облачный вердикт) scan
• Шторма «обновлений» и «проверок» Gotta Gotta
• Окно уязвимости при запуске Gotta scan scan
scan
think
Основная проблема агенты не могут this
scales
использовать работу, которая выполнена well
другими агентами.
Gotta
scan

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


• :


• IOPS
• CPU


Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Kaspersky Security for Virtualization.

• • VMware NSX
• Vsphere vShield

• - ,


Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security
(SVM) VIIS -


• •


)

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security



API :
• VMWare NSX®, Horizon®
and vSphere®
• • Microsoft Hyper-V
• Citrix Hypervisor, Virtual Apps
and Desktops

- • KVM hypervisor
• • Proxmox VE

NAB • Huawei FusionSphere


Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Kaspersky Security for Virtualization
*

MORE
x 3 MORE
EFFICIENT
x2
MORE
EFFICIENT x5 EFFICIENT

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security * Based on internal tests performed by Kaspersky Lab
Kaspersky Security for Virtualization
*

+ 5% + 25%
CPU + 1-5% + 10-15%
+ 20% + 150%
+ 5-10% + 15-25%

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security * Based on internal tests performed by Kaspersky Lab
AV-Test report, May 2014

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


VMWare)
VMWare vShield

Kaspersky Security for Virtualization :





• VMWare.

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Kaspersky Security for Virtualization

:
1.
2. VMware
3.

4.

5.

:
1.
2. VMware
Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security
VMware NSX
Встроенные сервисы VMware NSX

Распределенный фаервол Виртуальные сети (VXLAN)

Мониторинг активности сервера VPN (IPSec, SSL, L2VPN)

KASPERSKY SECURITY FOR VIRTUALIZATION

Антивирус Виртуальные сети IDS/IPS

Интеграция политик безопасности Интеграция тегов безопасности

Автоматизированное МНОГОУРОВНЕВАЯ ЗАЩИТА ДЛЯ ПРОГРАММНО-


развертывание ОПРЕДЕЛЯЕМЫХ ЦЕНТРОВ ОБРАБОТКИ ДАННЫХ

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


VMware NSX KHCS
:
VMware vSphere • VMware Tools
• NSX File Introspection Driver
NSX

NSX
NSX NSX
Controller
Manager Edge
cluster

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


!
VMWare
Tolly Report
VMware Horizon View), Tintri
VMstore Cisco UCS

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


-







VDI


Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security
(digital transformation)

• On premises - KESB

• -

• KHCS

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Kaspersky Hybrid Cloud Security
PHYSICAL SERVERS VIRTUAL DATA CENTERS PUBLIC CLOUDS

Physical Physical Physical VDI Virtual VDI

• • - •
• Windows Linux • • Azure Amazon
• •
• •
• • Windows Server Docker

Statistics SCAN VERDICTS


AND STATISTICS
Reputation
request / response
Admin
Kaspersky® Kaspersky®
Kaspersky Lab Security Security
Customers Network Center
Kaspersky Lab’s Hybrid Cloud Security Check
Log Inspection Cloud-assisted Intelligence Anti-malware
App Privilege Control HIPS / HIDS File Integrity Monitoring
Exploit Prevention Anti-Ransomware Behavior Analytics
NextGen AI-assisted
Runtime Protection

App Startup Control Network Segmentation

Default Deny Device Control Firewall Management


Systems hardening & Workloads Defense

RBAC Unified Security Orchestration


Monitoring & Reporting Cloud API Integration
Borderless Cybersecurity Orchestration

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Cloud API integration with AWS and Azure

Files, Memory, Processes protection

HIPS, HIDS, Firewall Management

Web AV, Mail AV, Anti-spam, Anti-phishing KHCS лицензируется по кол-ву VM:
Security Controls - Device, Web, and Mail
Server OS and Desktop OS
Application Control for Desktop OS

Exploit Prevention

Anti-Cryptor for Shared Folders Для частных ЦОД есть вариант


лицензирования по
Application Control for Server OS

File Integrity Monitor (FIM)


Core and CPU
Log Inspection
Enterprise
NextGen IDS/IPS for VMware NSX

Large Scale Environment support

Kaspersky | Kaspersky Hybrid Cloud Security. Virtualization Security


Thank you! Questions?

kaspersky.com