*Should EDR be installed on every system? Servers too? All clients?
*How important is the configuration of EDR?
*What should your goals be for defense: know malware? unknown malware? ransomware? or are these three different products?
*If you have a big name AV install, what should drive you to change it? e.g. Symantec or Mcafee...
*What are the most common threats missed by EDR?
*How much of a concern is: performance, scalability, manageability, and crashing the host OS?
*When should you consider running two, or more, EDR solutions on the same host? Or, do you run one flavor on some, and another flavor on another?
Full Show Notes: https://wiki.securityweekly.com/ES_Episode49
Visit http://securityweekly.com/esw for all the latest episodes!