Endpoint Antivirus & Malware Protection

Implementation and facilitation of an endpoint malware protection solution from our designated Third Party Provider.

• Artificial intelligence and machine learning to provide a comprehensive and adaptive protection paradigm to managed endpoints.
• Detection of unauthorized behaviors of users, applications, or network servers.
• Blocking of suspicious actions before execution.
• Analyzing suspicious app activity in isolated sandboxes.
• Antivirus and malware protection for managed devices such as laptops, desktops, and servers.
• Protection against file-based and fileless scripts, as well as malicious JavaScript, VBScript, PowerShell, macros and more.
• Whitelisting for legitimate scripts.
• Blocking of unwanted web content.
• Detection of advanced phishing attacks.
• Detection / prevention of content from IP addresses with low reputation.

* Please see Anti-Virus; Anti-Malware and Breach / Cyber Security Incident Recovery sections below for important details.

_________Current SOW Language_______

Managed Anti-Virus - Bare Basics - $5/workstation/month

• Bitdefender Anti Virus
• It gives your computer basic protection against KNOWN threats, including viruses, worms, Trojans, spyware, adware, ransomware, and more.
• Only flags threats on the computer the software is installed on.
• Remediation is done at your standard hourly rate.
• TechKnowledgey manages updates, and techs monitor the system during normal service hours.

Endpoint Detection and Response (EDR) - $11/workstation/month

• SentinelOne EDR
• A significant upgrade from traditional anti-virus
• Threat incidents are identified in real time by AI-based detection engines.
• Automated threat response that uses AI to identify threatening behavior vs only known bad files to determine how to respond. EDR responds to threat incidents 3x faster than with traditional AV.
• AI-based ransomware protection
• Roll back infected devices (Windows OS only) to their pre-infected state, typically in minutes, not hours. It helps avoid costly outages, data loss, and ransoms.
• Has an awareness of all of the endpoints running EDR to track the movements of treats through a network.
• Remediation is done at your standard hourly rate.
• TechKnowledgey manages updates, and techs monitor the system during normal service hours.

Endpoint Detection and Response + Managed Detection and Response (MDR) - $17/workstation/month

• SentinelOne EDR + Managed Detection and Response
• A significant upgrade from traditional anti-virus
• Automated threat response that uses AI to identify threatening behavior vs only known bad files to determine how to respond. EDR responds to threat incidents 3x faster than with traditional AV.
• AI-based ransomware protection
• Roll back infected devices (Windows OS only) to their pre-infected state, typically in minutes, not hours. It helps avoid costly outages, data loss, and ransoms.
• Has an awareness of all of the endpoints running EDR to track the movements of treats through a network.
• SentinelOne’s SOC (Security Operation Center) enterprise security specialists monitor the endpoints 24/7 
• Manage updates
• Analysts classify the threat incidents based on AI/ML, threat intelligence, and their expertise.
• Analysts mitigate and resolve threat incidents and escalate them proactively as needed.
• TechKnowledgey Inc. senior technicians manage remediations and escalations at your standard hourly rate during normal service hours.