Anti-Virus Software

Securing your firm's network is no longer a question of anti-virus software alone. Firms are now recommending a full-service approach.

Overview:

The general outlook in 2022 from member firms is that the traditional anti-virus software are no longer effective in preventing threats. Member firms are veering towards using full-service offerings instead for monitoring, detection, and remediation.

"EDR (Endpoint Detection and Response) allows the organization to monitor real-time security breaches, which coupled with a SEIM (Security Event and Event Management) adds dashboard monitoring and alerts. You can take it a step further with  24/7 SOC ( Security Operation Center which can be outsourced) to create a sound perimeter against zero-day exploits and attacks." - Lex Mundi Member.

Software Recommendations:

• CrowdStrike:(https://go.crowdstrike.com)

"CrowdStrike’s 24x7x365 Falcon complete service which is a managed monitoring, detection and remediation service.  Their sensors check for malicious behavior/activity such as lateral movement and elevation of privileges and their security teams are immediately alerted and stop it.  This also includes other features such a vulnerability monitoring and threat hunting. So a much more holistic offering than we previously had.  Check them out if you are considering changing – we have found them excellent." - Member

Firms may choose to pair CrowdStrike with additional coverage of network and Microsoft365:

• Huntress (https://www.huntress.io/)
• SecureWorks TaegisXDR (https://www.secureworks.com/products/taegis/managedxdr)

• Deep Instinct (https://www.deepinstinct.com/)
• Avast (https://www.avast.com/)
• Restoro (http://www.restoro.com/
• Another firm uses: AI-powered monitoring and training system to combat phishing (Knowbe4) and Solarwinds which provides a sort of virtual Securities Operation Centre to provide real-time monitoring, detection and alerts at serve/firewall/router level of the network.