Please share with the community what you think needs improvement with FireEye Endpoint Security.
What are its weaknesses? What would you like to see changed in a future version?
Something that needs to improve is the interface. I would also like to see simple processing and reporting online.
They could use a Host Intrusion Prevention System (HIPS) and application control module. If you have another endpoint product running on the same machine, you have to fine tune functions from FireEye to avoid performance and user experience issues.
We had a very large problem that has, unfortunately, not been solved. Simply put, when we start the computer the program will not start. We have encouraged FireEye to solve this problem because we have to manually start this product each and every time, and it affects almost thirty percent of our environment. From a security perspective, this is not stable. After using various components in this solution, I get the feeling that not every part of the whole FireEye suite works perfectly with the other parts. Sometimes you have this functionality where the product has the ability to take data from one part of the solution and use it in different parts. Sometimes, however, you don't have this luxury. The solution needs more suitable dashboards that handle things from different perspectives. For example, a CEO and a technician from operations are completely different. The integration and display of the dashboards have to be done better.
I hope the solution can be used in cloud systems going forward.
* AV management based on manual scan * Manual scan feature is not easily done * A long way of setting hostname set, and * Scheduling over policy which is time taking and I don't feel comfortable.