The Problem
Anti Virus, EPP and EDR as you know them do not solve the cybersecurity problem for the enterprise. To compensate, some rely on additional services to close the gap. But relying on the cloud increases dwell time. Depending on connectivity is too late in the game, as it takes only seconds for malicious activity to infect an endpoint, do harm, and remove traces of itself. This dependency is what makes the EDR tools of today passive asthey rely on operators and services to respond after it’s already too late.
Typical organizations that face normal budget and staffng challenges are ill prepared to leverage and maximize the benefts of EDR solutions by themselves.
Gartner – EDR — Benefts, Concerns and Issues
by Eric Ouellet, VP Analyst ,17 July 2018 https://www.gartner.com/document/3882963