Anybody has experience with running an EDR (Endpoint protection) on Linux (RHEL v7)? If so, which tool do you use?

Security Strategy & Roadmap
661 viewscircle icon5 Comments
Sort by:
VP of IT in Banking10 months ago

We use Crowdstrike Falcon in Linux servers as EDR. You may have to use an old version of the agent to support that version.

Director of ITa year ago

We do not run RHEL, but use Crowdstrike EDR on over 1,000 Linux assets. Microsoft has been pushing their EDR but their Linux performance is a question mark. 

1 Reply
no titlea year ago

thank you

CISO in Softwarea year ago

ClamAV works well on Linux

Lightbulb on1 circle icon1 Reply
no titlea year ago

thank you

Content you might like

How are you currently managing SIEM costs? Have you found effective ways to actually reduce storage costs for your SIEM?

Read More Comments

As part of our NYSE IPO prep, we’re debating how to communicate our system hardening efforts in regulatory disclosures (e.g., SEC Form 20-F, SFC).

Would you recommend sharing % compliance (e.g., “85% CIS Tier 2”) or sticking to qualitative descriptions of how we identify and mitigate risks? Also, do SFC/ISO 27001 expectations require full ISMS integration, or is a % model acceptable?

Is footprinting an effective way to do vulnerability management?

Very effective1%

Somewhat effective52%

Slightly effective31%

Slightly ineffective8%

Somewhat ineffective3%

Not at all effective

Not sure yet1%

View Results

What would you say is the key component of your Security Awareness Program?

Video Training17%

Phishing Simulations63%

Infographics12%

Gaming5%

Other (please share below)

View Results

I'm looking to go for the Certified CISO certification & training as I'm an aspiring CISO. Any recommendations and additional certifications that I should be doing along with that? I already have CISSP. 

Read More Comments