Bitdefender GravityZone EDR Room for Improvement

SimonClark - PeerSpot reviewer
Cyber Security Advisor - Director at Fort Net UK

If we're simply looking at endpoint monitoring, I think the problem is that your basic antivirus, your standard anti-virus, is woefully inadequate.

If you think about small to medium-sized enterprises, my concern is that if they ask for guidance, they'll be told to turn on antivirus. They'd presumably get McAfee or Norton or something similar as an antivirus program. Then they'll probably be told to turn on their Microsoft Defender firewall and not do much else. That is a very dangerous position to be in, because, as we all know, phishing attacks are becoming increasingly sophisticated. They get past people's perimeter defenses, and the staff is deceived into clicking on them, putting them in danger. There are numerous techniques to consider.

Small businesses can get a complete security package from me. It has six layers of security, including Bitdefender's antivirus and encryption, as well as interaction with a security operations center. There are more levels to it, but those three are critical since most antivirus programs, even those from businesses like Sophos and McAfee, and less so from Symantec, appear to have changed who they want to market to at the present.

All of those firms are dreadfully short, whereas Bitdefender if you look at the marketing and blogs and technical stuff that Bitdefender releases on a daily basis, is far superior. Bitdefender is producing extremely high-quality threat intelligence. And if you look at Gartner's right-hand side of the Quadrant, Bitdefender is currently rated as their best endpoint security product, according to Gartner.

The one thing I'd say about their complete MDR product is that it's too expensive, which is why I prefer to use an alternative SOC and integrate Bitdefender to a different SOC on their own.

More integrations are always beneficial.

View full review »
Chris  Bender - PeerSpot reviewer
Information Technology Infrastructure Manager (Region 2 IT Manager) at NNR Global Logistics USA Inc.

Bitdefender GravityZone Ultra does have a ransomware remediation, and that's probably one of the areas where they don't highlight using it, especially in comparison to BullWall. Their ransomware remediation doesn't respond as fast as BullWall does. It's a little more delayed.

Ransomware control needs to be improved. It's just a feature that needs to be updated and expanded upon. A functionality that I would like to see in the solution is user tracking since you already got all the reporting in there, tell me what sites were blocked, and they should tell me what sites were visited and how often they visit those sites. That would make it a great reporting tool. So, instead of going out and having everything go through a proxy server to track it, it's better just to do it for the EDR software since you're already tracking for blocking sites. It should be able to just give me everything.


View full review »
Basawaraj  Vastrad - PeerSpot reviewer
Technical Director at BD Software Distribution Pvt Ltd

Application Control should be available on the cloud.

The product should provide asset management and DLP features in future releases. We have discussed the same with our account manager from Bitdefender. Vendors like Kaspersky are providing such features. DLP is one feature that people need along with an endpoint security solution. It's supposed to cater to the needs of government customers and mid-size businesses.

We are looking for an integrated solution just like Kaspersky. Symantec is also providing DLP along with endpoint security. Even Sophos has started providing DLP features.

View full review »
Buyer's Guide
Bitdefender GravityZone EDR
March 2024
Learn what your peers think about Bitdefender GravityZone EDR. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.
Fabrizio Fioravanti - PeerSpot reviewer
Engineer at a educational organization with 5,001-10,000 employees

The interface could be improved since we have some tasks that are not easily understandable, and it took us time to understand why it didn't work. However, the instrument itself has no particular problem.

View full review »
MohammedMateen - PeerSpot reviewer
Network Administrator at Transgulf Readymix

The main area for improvement is the dashboard of the cloud console, where we manage security policies and groupings. It needs to be more flexible and informative. 

The current setup requires us to navigate multiple dashboards and remember specific policies, which can be cumbersome.

View full review »
SK
Head of IT at RD Tech

We would like to see password management integrated into the solution because I don't like having a third-party password management system. I don't like users using password management systems in their browsers. I would like to see a separate password management system. I would also possibly like to see a VPN system in the solution.

View full review »
CO
Director, Information Technology at a tech services company with 11-50 employees

The whole suite is unlike most AV consoles, which will inform you when there is an infection or threat, for some inexplicable reason Bitdefender does not do that. The most you will receive is an hourly update or possibly if there is an outbreak that affects 30% of your machines, an email. There is no real-time alerting to inform the user there was a potential attack that recently happened on their system. They could improve by having real-time reporting which is important.

I have not had used the EDR portion of the solution to do any custom scripting to allow further advanced operations on the endpoints. From what I understand from reading the comments on reviews is that it is not particularly flexible in this regard.

Sandbox Analyzer is a feature that comes as part of the Bitdefender GravityZone Ultra Suite. It will start automatically unless you want to manually submit something which I have rarely done. When the feature is in use I do not get a reading back from the analyzer right away, it lacks real-time functionality. For example, if I was executing an admin tool and it was blocked because the Sandbox Analyzer wants to look at it on my local machine, it might take 10 minutes before I can successfully then launch that application to use it. The time it takes to analyze the software is too long. We are busy people and we end up just turning off the detection to allow the use of the program.

View full review »
ML
Manager, Information Security at Hyundai Capital America

The EDR Graphical user interface has improved over the time and is intuitive and less noisy as compared to other solution. I would call the EDR as Next-Gen in it space. It has perfect mapping to Mitre Att&ck framework no other solution is has a rich EDR like Gravity zone ultra. 

View full review »
SO
General Manager at Kristel

In terms of improvement of the solution, it could have better features. For example, having a firewall within. This way we would only need one solution.

In a future release, they should include mobile devices within the cloud setup. 

View full review »
Anna Moshchitskaya - PeerSpot reviewer
GRC & Cyber Security Consultant at Merlink

The solution's technical support in terms of communication could be provided in the Hebrew language. 

View full review »
JG
IT Compliance Engineer at a energy/utilities company with 51-200 employees

I believe it would be better if Microsoft Defender offered features similar to what it does. I appreciate how Defender integrates with Exchange, providing advanced threat protection. In comparison, Bitdefender primarily focuses on endpoint security, serving as a basic line of defense. There's room for improvement in terms of protection. That's my primary concern.

View full review »
MT
Commercial Manager at Ingecom

I can't recall coming across an area that is lacking. 

Technical support could be faster and more responsive. 

The cost is a bit high.

View full review »
MH
IT Manager at Esnad

This solution would be improved if it included antivirus functionality. You currently need to install a plug-in to Outlook for each email to be scanned. 

View full review »
DA
Cybersecurity Analyst & System Engineer at Compucare Systems Inc

Bitdefender could improve their modules on the server. For example, Bitdefender doesn't have content filters or firewall modules on the server. It would be great if it had a networking module and a content filter module at the workstations. Because when you install it on a workstation and a server is totally different, the workstation has all the modules, firewalls, content filters, antivirus, anti-exploit, etc. But then the server has fewer features than the workstation. It has the anti-malware and the EDR, which is good because you can see the logs. It also has the device control so you can block USB's and whatever you need. But it doesn't have the content filter to see the anti-phishing, and it doesn't have the firewall inside to stop network attacks. This is something that could be improved.

View full review »
CM
Microsoft Sales Specialist at Mustek Limited

Bitdefender GravityZone Ultra should include more advanced features than their competitors in the market for the auto-detection of viruses and threats within the environment.

View full review »
DK
BDM at Vision IT

They should improve the solution's patch management feature. Also, they should work on business model encryption.

View full review »
BarryGreene - PeerSpot reviewer
Owner at Providing Excellence through Technology

The solution is sometimes resource-intensive. 

View full review »
MA
Senior Network Engineer at Dejpaad

I can't say I am aware of areas that need improvement. It's good overall. 

We would like to see a more advanced dashboard. Right now, it is very simple and not very advanced. I cannot search for or change things very easily.

View full review »
TF
Managing Director at TEPSA (Pty) Ltd

The only issue an end user might have is in the case where a website has some kind of monitoring software included, where they want to track use, and it might unnecessarily block the site for the user. In that event, the user would contact us and we can 'white list' the site for them enabling them to use it. 

View full review »
BW
Senior Network Manager at Denis Enterprises

The one thing that we are missing and want to see is user analytics. So, that is what I'm really interested in: behavior analytics and end user behavior.

View full review »
MH
Cybersecurity Lead Consultant at Netconetworks

Bitdefender GravityZone EDR needs to be more stable. 

View full review »
CO
Head of Implementation and Security at a financial services firm with 1-10 employees

The URL filtering features should be addressed. 

The installation capabilities should be improved, especially when new updates come out. Sometimes, installation requires one to get to the level of having to install the agents. The installation is not straightforward and should be easier to do. 

View full review »
MC
Managed IT Services Provider at a tech services company with 1-10 employees

When one designs for the cloud, the Windows client, no actual package is provided. This is an issue which should be addressed. The package must be downloaded and, when this is accomplished, it does an additional download. On certain older computers this can take  a long while. 

This contrasts with the Mac version, which is very quick. There is a need to work on the deployment, when it comes to deploying to Windows machines with regards to downloading the size of the package.

I suppose that the deployment could be faster, although this is not really a criticism, as this involves the design. There is always a difference in Windows and Mac architecture, so I would not count this as a complaint. It would be nice if the Windows deployment could be improved, although this does not result in any major difficulties. 

View full review »
IL
Telecommunications and Infrastructure Manager at a manufacturing company with 5,001-10,000 employees

The reporting is much too simple. It should be more in-depth and offer more details and more information. They could really build out the reporting aspect of the product overall. We need more information, for example, about traffic and logs. It would be much more helpful if we had a bit more visibility.

View full review »
RN
CEO at CSToday

We don't deal with very large organizations. We stay as far away from active directory and combined network typologies, as much as we possibly can. The way I explain it is we don't build our houses out of straw, we don't build our houses out of wood. Each user machine that piggybacks builds a stone house. 

We've cloud migrated everybody, however, it did not happen generically. We've used Google Enterprise or Box Enterprise, so good stuff. AES-256 at rest and AES-128 in transit. We only do scans on GravityZone covered machines via our contemporary APIs. We close every hole we can find. With people who still have servers, whether they're physical or virtual or cloud, and they're still active directory, and they're still 100% Microsoft shops, I've heard them complain. However, I don't care as it doesn't affect any of my clients.

For many, the problems come mostly when they start tweaking or short-cutting - particularly for patch management. A lot of admins will tend to bundle work that we don't think should be bundled, however, they tend to due to the fact that they're underfunded and undermanned. They've got to get all the patches up. They've got to get all the updates done. Therefore, they tend to tweak group policies associated with the active directory. Some of those customizations can create potential security holes.

GravityZone is the only one with the heuristic model, the simulator. We've seen where a thing may pass the script desk, it may pass the node and snippet test, however, it fails the heuristic test. That's where it launches a virtual machine in the high memory and lets the thing do whatever it's going to do, and then looks for where it goes. Of course, a lot of these things then go to the approval area as that's what the admin intended. However, then they get into a bit of a problem with GravityZone as it doesn't want them to do that. GravityZone works fine if you follow best practices in the other areas of your deployments. If you're kind of cheating or cutting corners, GravityZone isn't going to be mean to you, however, it may give you grief. 

View full review »
ZV
Managing Director at Zolitron Technology

The areas of Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) could benefit from improvement in terms of how problems are reported and displayed. The way the problems are presented and the information provided could be improved.

View full review »
Neel Pardeshi - PeerSpot reviewer
Associate Network L1 at 1rivet

It is easily integrated with our controller. However, it's not directly integrated with it. When we took our system endpoints in our anti-directory, we did not see them in our different antivirus directory. Once we install the agent in it, it'll show that. It would be good if they directly integrate with our anti-directory, so whenever the endpoints come into our domain, we can directly install the agent through the web portal into the endpoint.

If we could directly push the agent to the script, it'll be very good. We don't have to handle it manually.

A new user might have issues with the initial setup. It's easier to handle if a person is knowledgeable.

It would be ideal if they offered application patches.

View full review »
RO
IT Manager at voluntis

At the moment, I do not have enough experience with the solution to know what needs to be improved. The cryptosystem could be improved a bit.

View full review »
EN
Solutions Specialist at a tech services company with 11-50 employees

The improvement of the product is required since I am in the cybersecurity industry, where there are a lot of antivirus solutions that offer just a few advantages or have some disadvantages compared to other products. I want Bitdefender GravityZone EDR to offer better antivirus technology and additional features, especially in areas like DLP.

The product fails to provide guides to its users. In future releases of the product, I want the tool to offer some guides and hands-on training that can guide users who want to learn more about the product without the vendor's help. A guide for the product can help you learn about the tool at your own pace and show you the options you can use in the solution.

View full review »
TA
Systems Engineer at a tech services company with 11-50 employees

The features in Bitdefender GravityZone EDR are what our company's customers are happy with and actually want. I don't see my company's customers requesting more from Bitdefender GravityZone EDR since they get what they want from the product.

Bitdefender GravityZone EDR doesn't have an official office in Saudi Arabia, which is important if the vendor wants to gain or be closer to their customers. Bitdefender GravityZone EDR needs to have a legal team with technical support, a sales manager to cover the region, a pre-sales representative, a technical account manager, a channel manager, and a good team in Saudi Arabia.

View full review »
AA
IT Specialist at Xpert Systems Shpk

What would make Bitdefender GravityZone Ultra better is if Bitdefender employed more firewall policies and added even more features to the product.

View full review »
HenryKituyi - PeerSpot reviewer
Program officer at Huduma

There was a bit of a problem deploying. However, that was resolved. As it is now, we are at the stage of deploying it to the end-users.

View full review »
RW
Regional Head at a tech services company with 51-200 employees

We'd like to have an encryption model within it. They need to improve their encryption capabilities. 

View full review »
GR
Chief Information Security Officer at a tech services company with 11-50 employees

The tech engineers don't complain about much. It's solid. My biggest thing is that I want to have more than one option for my clients.

The software itself is solid. It would be better if it was more of a real-time solution, like SentinelOne. The one thing that holds me back on the SentinelOne side is that I can blacklist websites and stuff like that, but it's not as granular as Bitdefender. With Bitdefender, I feel like I have more control over what I can whitelist and blacklist.

Bitdefender is not designed to work in real-time. It's a signature-based platform, it's going to work signature-based in that there are times that it has to get updates. For example, if I'm managing a hundred machines with Bitdefender and the staff is having internet issues or something, and Bitdefender does an update within a week, not all the machines are going to be up to date at the same time. I have it configured to run every day at a certain time but unfortunately, a lot of the people that use it have really bad internet and I can't run it during work hours, I have to run it after hours and they shut their computers off. The first thing Bitdefender does is it goes and looks for signatures in the morning and then it runs the updates at night and then it runs scans at night as well. Sometimes it can go three, four, five days without any update. I've had some that go up to 27. The longest I've had was 32 days and it didn't even run one scan.

I have a client in the Philippines and right now, because of COVID, they're all over the Philippines and in the provinces where they have a really bad internet connection, it's a struggle. I have to schedule with them. The internet is so bad that I have six people using phone data to work because internet companies don't even go that far out for them to have a stable internet connection.

In those cases, I'm struggling a little bit with Bitdefender. With a regular office set up, it runs like clockwork. But with this new normal that we have right now, it's been a little bit complicated. That's why I'm looking to add Cylance. I have a demo with them soon.

View full review »
BM
Owner at a tech services company with 11-50 employees

The pricing should be improved. The user interface has been improved on a yearly basis. The key issue is that they need to look at their pricing.

Bitdefender is very productive because since we started selling Bitdefender for the past ten years, we've had almost about six different revisions. Every year and every six months there are improvements in their products, based on feedback, customer needs, changes in technology, and so on. 

For example, people were talking about encryption, so today you have GravityZone that has the ability to perform disc encryption. Disc encryption is done to ensure that your disc isn't attacked. 

Clients were requesting for endpoint detection EDR, which right now they have been able to incorporate. At any point in time, they have always been improving. 

Every six months there are new features. Every three months new features come in to address the needs of these customers. Bitdefender has consistently been very pro-active in virtually all the places we've installed. We ask our clients if they have any issues with the product. All of them say that it's very easy to install and to understand and that they don't have any problems with it. Any global requirements are constantly incorporated. Our clients want to see some intelligence built into reporting but they saw that most antivirus solutions don't do analytics. Bitdefender has acquired a new company that does analytics so the analytics software gets input from the antivirus then it is able to correlate and give you the analytics that are required.

View full review »
MA
CISO at BRD-Groupe Societe Generale SA

The solution performed very well in handling threats, antivirus is baseline for any organization and it is very dangerous not to take care of the basics.

We would like to see more improvements on the reporting side, such as more granular or customization abilities, or compliance-ready template reports.

View full review »
CA
Owner and business consultant at networks srl

It's not quite so easy to use, but it's good enough and powerful.

Using this product requires quite a bit of training, which is hard to get. If it were easier to use and there were more training available then it would be helpful.

View full review »
RG
Information Security Officer at GlobalSign

Windows Defender is becoming a default component of the Windows operating system. The on-premises setup for Bitdefender sometimes faces issues with connectivity. Management of Windows Defender is a bit easier compared to Bitdefender.

They need to increase their capability to scan cloud services.

View full review »
FS
Responsible for Technical Department at Calheiros Embalagens, S.A.

The firewall security could be better.

View full review »
Just Asking - PeerSpot reviewer
Owner at FirewallHire.com

The product can be improved by identifying errors. Sometimes, the product has issues but does not show error messages, and we have to check the console to find the issues. Therefore, it is difficult to identify problems and how they can be solved.

View full review »
Saijeet Kalpoth - PeerSpot reviewer
Regional Manager at Informa Solutions Pte Ltd

Areas for improvement would be performance and pricing.

View full review »
AH
Datacenter Engineer at a university with 501-1,000 employees

There is room for improvement in the communication between servers and endpoints. The performance there needs to be much better. When we install endpoints and they communicate with the appliance server, we notice a drop in endpoint performance. The endpoint automatically connects and the policies are applied to the endpoint but the performance does not meet our expectations.

In terms of additional features, I would like to see a remote desktop for installed endpoints so administrators can see what is on a user's screen or what a user is doing. A remote desktop between the server and the endpoints would be a useful feature in Bitdefender.

View full review »
ME
Information technologies at a financial services firm with 11-50 employees

We are having trouble on the server side. But also on the endpoint side. For example, specifically on my computer, I couldn't run it, so I had to remove the program. I'm not using endpoint security for now, especially not Bitdefenders right now.

We find it's making the machines run slow. We're also having problems in the service groups. When we run GravityZone it suddenly goes very slowly. Some processes are bad and we can't use some features, so we had to uninstall some products from the service of some endpoint devices. We are using about 2000 endpoints and 2000 servers.

They seem to have problems installing for the client. We can't seem to find support when we do an install. Uninstalling it is a problem as well. Recently, I tried to uninstall from my computer and when I tried to deploy it, it was hard for me to uninstall it. I have found some tools, but it was really hard to remove it with them too. 

It must be optimized in my opinion. Because it makes the machine very slow. In the past, we were using ESET NOD32. It was very good, it was not making the machine slow. It was normal. The machine was fast when I'm used ESET, but when I started using Bitdefender it made my computer very slow. It's not just me. My colleague is complaining that the machines are becoming very slow after using Bitdefender.

They should make uninstalling easier and improve the service side, but also make it removable on demand locally. It needs to be removable from the local service, not the cloud.

View full review »
HP
Security Technician at a government with 1,001-5,000 employees

The solution can be improved by being able to pull up the localization key map of the user. Also, to be more international, not just American compliant.

View full review »
it_user678075 - PeerSpot reviewer
Information Security Manager at a financial services firm with 501-1,000 employees

In future, maybe this will need to provide cyber threat intelligence feeds which could help to have proper visibility of new security threats.

View full review »
IS
Internal IT manager at a tech services company with 51-200 employees

The only problem we have, and I don't know if maybe it's the package we bought, is that it lacks the parts of data protection and application blacklisting. I don't think we have that option on this package. Apart from that, we've been using it and we've been seeing the reports. We've had no issues so far. We're just missing the blacklisting and data protection features.

View full review »
it_user772518 - PeerSpot reviewer
Network Administrator

One thing that could be improved is more granularity and options on exclusions. I have some difficulty in allowing executables that were deployed every time on different locations.

Also, more options for admin endpoints clients.

View full review »
it_user776916 - PeerSpot reviewer
Junior Network Engineer at a tech services company with 1,001-5,000 employees

I think the Application Control (different from application blacklisting) has room for improvement. When you define an application to block, for example applications with .exe file extension, and apply it to production, other .exe applications are also blocked automatically.

View full review »
TA
Systems Engineer at a tech services company with 11-50 employees

While the solution is secure, it could have better integration. 

Also, the support should be faster.

View full review »
MB
Technical Team Leader at ValueSYS

I would like to see the capability for remote installation of third party applications added( Like installing WinRar MS Office etc..) , and Firewall for servers.

View full review »
KK
Product Leader at a tech services company with 51-200 employees

We have not had any major problems with Bitdefender, it seems to be quite good.

There are some additional features that they can implement in the product. For example, a remote wipe option or a geo-tracking for the laptop. That may not be the area they are targeting, but it would be useful.

They were working on the encryption management for laptops, and if they complete it then it would be helpful.

View full review »
it_user772515 - PeerSpot reviewer
Head of IT Department at a transportation company with 201-500 employees
  • Antiphishing
  • Antispam
  • Module with network administration of computers
View full review »
IS
Channel Manager at a tech services company with 11-50 employees

Having better descriptions or larger headings that will help you navigate through the to the ISP is needed. It needs to be a bit easier, a bit more intuitive. It would also be nice if we could move devices between companies.

View full review »
Buyer's Guide
Bitdefender GravityZone EDR
March 2024
Learn what your peers think about Bitdefender GravityZone EDR. Get advice and tips from experienced pros sharing their opinions. Updated: March 2024.
765,234 professionals have used our research since 2012.