How do you or your organization use this solution?
Please share with us so that your peers can learn from your experiences.
This solution is our go-to for your basic antivirus scans. Most of the stuff that we have is standalone. It's all pooled from McAfee, we buy the license for whatever tool the customer wants use to use, and we install it on the product. I'm a manager at the company.
Primary use case: malware blockage. If you remember WannaCry, this system stopped it dead in its tracks with zero system failures. If you recall WannaCry hit on the weekend. I updated the rules from home on my ePO server and more than 200 machines were on during the weekend. When I checked the logs on Monday morning, at least 50,000 hits were registered in the logs with zero system failures. Its greatest strength is the DXL client which can rapidly disseminate attack information to all clients via the McAfee Agent instead of going through the ePO server.
Our primary use for this solution is the detection of threats.
If you were talking to someone whose organization is considering McAfee Advanced Threat Defense, what would you say?
How would you rate it and why? Any other tips or advice?