WIXLIB

Kaspersky Endpoint reProtection usingMachine LearningAutomaticExploitPreventionUnprecedented proven protection for allforms of endpointOur advanced protection technologies secure enterprise organizations and their ITinfrastructures, however complex, includingevery endpoint, from physical and virtualdesktops and servers to mobile devices.Behavior analysis using Machine Learning toprotect your businessOur solution uses Machine Learningbased on both static and dynamic datatechnologies. This is how we protect youeven from future threats.Powerful Global Threat IntelligenceAll our technologies are powered by ourproven Global Threat Intelligence. We havemade more APT discoveries than any othersecurity vendor, so we have an unequalledunderstanding of the nature of modernthreats, and can help you to better protectagainst them.ServerProtectionWeb,Applicationand yptionAutomatic real-time responseAt the instant a threat is detected, the systemwill automatically roll back any changes themalware has already instigated, as detectedby our dynamic behavior monitoring engine.Continuous dynamic protection from zero-day threats and exploitsAutomatic Exploit Prevention has beendeveloped to prevent cybercriminals fromtargeting application vulnerabilities onprotected machines. Automated PatchManagement adds a further layer of security.FIPS 140-2 Certified Data ProtectionPowerful, user-transparent encryption fullysecures confidential and sensitive data onthe move, on portable devices and at rest.Reliable protection against ransomwareKeep your data safe, avoid funding cybercriminals through ransom payments andprotect shared folders from advanced cryp-7AutomatedPatchManagementProtection forCollaboration Servers,Mail Servers andInternet Gatewaysto-lockers with our anti-ransomware technologies.A lower TCO and a higher ROI throughunified & centralized managementManage multiple platforms and all endpointdevices from the same console – increasingvisibility and control with no additionalinvestment in software, equipment orhuman resources.

Embedded Systems SecurityAll-in-one security specifically designed for Embedded systemsOperating as they do with real money and credit card credentials, Embedded systems are targets of choice for cybercriminals, so require the highest levels of focused, intelligent protection. Now is the time to apply well-proven technologies likeDevice Control and Default Deny as a first line of defense.Today we see embedded systemseverywhere: in ticketing machines, ATMs,kiosks, Point of Sale systems, medicalequipment the list goes on.Embedded systems are a particular securityconcern as they tend to be geographicallyscattered, challenging to manage and rarelyupdated. But systems working with cashand customer credentials have to be faulttolerant and resistant. Embedded devicesmust not just be protected against threatsin themselves, but must be inaccessible bycybercriminals or by an inside attacker as anentry point into the corporate network.Standard security regulations for embeddeddevices tend to cover only antivirus basedsecurity or system hardening, which isnot enough. A purely antivirus approachis of limited effectiveness against currentembedded systems threats, as has beenamply demonstrated in recent attacks.Default Deny for Applications, Drivers and Libraries, boosted by Device Control functionality,is the only approach which can ensure the safety of obsolete critical systems still in use.The Solution: Kaspersky Embedded Systems SecurityKaspersky Lab has created a security solution specifically for organizations operatingembedded systems, reflecting their unique functionality and OS, channel and hardwarerequirements, while focusing on the specific threat environment faced by these systems andfully supporting the Windows XP family.Kaspersky Embedded Systems Security offers a ‘Default Deny only’ operational mode, wheresystem requirements start from 256Mb of RAM and 50Mb HDD space for Windows XP forlow-end hardware systems.There’s also an on-demand scan mode supplied by an optional Antivirus module, including afirewall management. This module is powered by the Kaspersky Security Network, with patchmanagement facilities if required.So this single solution meets three key objectives: Efficient security for ‘difficult to manage’ systems Compliance with PCI DSS requirements 5.1, 5.1.1, 5.2, 5.3 and 6.2 A soft timeline for obsolete systems and hardware replacement8

The solution has been designed specifically to mitigate cybersecurity risks to systems based on Embedded operating systems, protecting theattack surfaces unique to these architectures while respecting related hardware and efficiency considerations. A single intuitive console givesyou the control and visibility you need to manage effective multi-layered security for your endpoints, your critical systems and your whole ITinfrastructureDefault DenyDevice ControlDriversApplicationsAntivirusUSB StoragesLibrariesKasperskyEmbedded SystemsSecurityApplicationsDriversLibrariesUSB Storages9

Cybersecurity ServicesThreat Intelligence, Security Training, Incident Response andAssessment from the world leader60% of large enterprises plan to utilize threat intelligence services in their security strategy.Sophisticated threats are constantlyemerging, and cybercriminals are developinginnovative techniques to outsmartestablished security technologies. Traditionalsecurity solutions such as antivirus, firewalland intrusion prevention systems aloneare no longer enough for comprehensiveprotection – today, a new security approachbased on threat intelligence and extensiveexpertise is required to fill this security gap.By sharing our up-to-the-minuteintelligence with our customers, KasperskyLab helps enterprises to guard againstthreats. Our broad range of intelligenceservices helps ensure your SecurityOperations Center (SOC) and/or IT securityteam is equipped to protect the businessfrom the latest online threats.Cybersecurity TrainingCybersecurity awareness and education are critical requirements for enterprises faced withincreasing volumes of constantly evolving threats.Your in-house security specialists need to be skilled in the advanced security techniques thatform a key component of effective enterprise threat management and mitigation strategies,while all employees should have a basic awareness of the dangers, and of how to worksecurely.We offer a portfolio of Cybersecurity Awareness training, as well as a broad curriculum oftraining programs ranging from basic to expert level in digital forensics and malware analysis. Cybersecurity Awareness helps enterprises improve their employees’ security skills – and,as a result, their corporate security. Security Education for IT Security Professionals, at all levels, improves the skills of yourin-house security experts and minimizes the risk of incidents.10

Threat IntelligenceExpert ServicesDoes your SIEM system have adequatecyberthreat detection capabilities? Can yoube sure that you’ll be warned in good timeabout the most dangerous threats? Ourportfolio of Threat Intelligence Services isdesigned to equip enterprises to managethese risks:Is your in-house expertise sufficient to resolve a cyber-incident? Is your IT infrastructureand are your specific applications fully secured against potential cyber-attack? Our ExpertServices are designed to mitigate and resolve these risks: Threat data feeds: enhance your SIEMsolution and improve forensic capabilitiesusing our up-to-the-minute cyberthreatdata. Application Security Assessment Uncover vulnerabilities in applications, from largecloud-based solutions, ERP systems, online banking and other specific business apps toembedded and mobile apps on different platforms. APT Intelligence Reporting deliversexclusive, proactive access todescriptions of high-profile cyberespionage campaigns, includingIndicators of Compromise (IOCs). Penetration Testing: Learn how to identify the weakest points in your infrastructure andavoid damage caused by cyberattacks. Ensure compliance with government, industry andcorporate standards (e.g. PCI DSS). Digital Forensics and Malware Analysis: Reconstruct a detailed picture of any incidentusing comprehensive reports, including incident remediation steps. Customer-specific Threat IntelligenceReporting identifies externally availablecritical components of your network.11

Cybersecurity AwarenessBuilding a safe corporate cyber-environment with gamified trainingMore than 80% of all cyber-incidents are caused by human error. On average, enterprises pay 861,000 to recover from asecurity breach, while SMBs spend 86,500. Phishing attacks alone cost up to 400 per employee per year.Enterprises lose millions recoveringfrom staff-related incidents – but theeffectiveness of traditional trainingprograms intended to prevent theseproblems is limited, and they usually failto engender the desired behavior andmotivation.Kaspersky Lab has launched a family of computer-based training products that leveragemodern learning techniques and address alllevels of the organizational structure. Ourtraining program has already proved its effectiveness – both for our customers and for ourKaspersky Lab partners: Up to 90% decrease in the number ofincidents 50-60% reduction in potential monetarylosses associated with cyber-risks Up to 93% probability of knowledge beingused in daily life 86% of participants would recommendtheir course to colleagues.Kaspersky Security AwarenessTraining ProductsSenior ManagersLine ManagersAll EmployeesIT Security andSpecialists12KIPSStrategy andcorporate supportCyberSafetyManagement GamesEmployee SkillsTraining PlatformCyberSafety Culture AssessmentChanging Hearts and MindsCyber-safebusiness decisionsPersonal cyberhygiene skillsUnderstanding,measurementand persuasion

Winning ApproachHow It Works Building behavior, not just deliveringknowledge: the learning approachinvolves gamification, learning-by-doing,group dynamics, simulated attacks,learning paths, automated reinforcementof skills, etc. This results in strongbehavioral patterns and produces longlasting cybersecurity improvements; The training covers a wide range of security issues – from data leakage and ransomwareto internet-based malware attacks, safe social networking and mobile security. Serious, practical content (based on thepower of Kaspersky Lab R&D) deliveredas a series of interactive exercises finetuned to meet the business needs andtime/format preferences of differentorganizational levels: senior managers,line managers, average employees; Training features analytical and reporting tools that measure employee skills and learningprogress, as well as program effectiveness on a corporate level. The continuous learning methodology fuels a constant reinforcement of skills and drivesmotivation deep into the organization. Training courses which address different organizational levels and functions togethercreate a collaborative CyberSafety culture, shared by everyone and driven from the top. Educational plans and best practices provided by Kaspersky Lab facilitate programimplementation and help the customer’s IT Security and T&D teams get the most out ofSecurity Awareness initiatives. Real-time measurement, painlessprogram management: purpose-builttraining software delivers automatedtraining assignments, skills assessments,and reinforcement through repeatedsimulated phishing attacks and autoenrolment in training modules. Coursescan be managed and delivered byKaspersky Lab partners or by thecustomer’s own T&D teams (Trainthe-Trainer programs and support areprovided by Kaspersky Lab).13

Cloud SecurityBorderless security engineered for your hybrid cloudWhen it comes to virtual systems security, enterprises look for the right balance between protection and performance,as well as the most advanced security capabilities to keep business-critical processes safe.On average, data breaches involving virtual systemsare more than twice as costly as those involvingphysical machines.Total Direct Damages and CostTotal Reactive Spend 942K 454KNo InvolvementInvolvingvirtual systemsEnterprisesSource: KasperskyLab Global Risks Survey 2015As enterprises continue to roll out virtualizedenvironments across more of their IT estate,there is an increasing need for securitydesigned specifically for virtualization. Butfinding a solution which provides securitycapabilities both for your growing VirtualDesktop Infrastructure (VDI) and your virtualserver environment, while retaining all theperformance benefits of virtualization, is noteasy. With all its advantages, virtualizationalso creates additional ‘attack surfaces’,presenting cybercriminals with even moreopportunities to target very large businesses.solutions. Scanning and update storms arenow eliminated, together with windowsof vulnerability or ‘instant-on’ gaps. Withadditional layers of protection combinedwith network attack blocking mechanisms,Kaspersky Lab’s solution takes corporatevirtualization platform security to a new level.The solution securing your virtualizedinfrastructure should deliver uninterruptedprotection, providing enhancedfunctionality while still preserving theefficiency of your virtual infrastructure.While an attack on physical nodes leads to thetemporary loss of access to business-criticalinformation in 36% of incidents reported, thisrises to 66% when the breach affects virtualservers and desktops.The unique architecture of Kaspersky Lab’sspecialized solution provides efficient multilayered virtual machine (VM) protectionwithout sacrificing performance. Theresult is significantly higher consolidationratios than with traditional anti-malware14For a large Enterprise, the average cost ofrecovering from a virtual security breach isover US 940.000, twice as much as for acomparable incident involving only physicalinfrastructure.

The Solution: Kaspersky SecurityFor VirtualizationKaspersky Lab offers two technologieswhich allow you to achieve that perfectbalance of optimum security and preservedperformance.While our agentless solution operates inharness with core hypervisor technologies(such as VMware NSX), our light agent solution offers additional layers of protection toeach VM.To protect VMs, enterprises need only deploy a single Security Virtual Machine (SVM),to which file-level scan tasks can be offloaded. This SVM provides centralized anti-malware protection for all VMs on the host withno extra resource consumption. Built-infault tolerance and redundancy gives yoursecurity solution the reliability you need forsuccessful business operations.Deploying a Light Agent on each VM meansthat multi-layered protection and feature-rich security controls can be addedto the mix. Security for your VMs, whetheragentless, light agent based or both, canbe managed, together with your physicalendpoints servers and your mobile devices,from a single console.Kaspersky lab’s unique Light Agent technologyLight AgentSecurity Virtual Machine (SVM) Enhanced security for servers and VDI Memory and Processes protection Apps, Device, Web and Mail control Exploit Prevention & Anti-ransomware For Windows and Linux servers Full scanning enqine Complete full-sizes AV databases Scan task orchestration Redundancy and fault-toleranceKaspersky Security for Virtualization is tightly integrated with most popular virtualizationplatforms — VMware vSphere with NSX, KVM, Microsoft Hyper-V and Citrix XenServer.Our security solution is optimized to safeguard platform performance by fully exploitingyour hypervisor’s own core technologies – complementing and enhancing security in, forexample, VMware Horizon and Citrix XenDesktop VDI.Kaspersky Security for Virtualization can be licensed in two ways, depending on your business needs and the characteristics of your virtual infrastructure:by the number of virtual machines (desktops plus servers) or by the number of host server physical processor cores.15

Data Center SecurityEmpowering your data center to detect and respond to the mostadvanced cyberthreatsSoftware-defined data centers need just as much protection as their traditional counterparts. Fail in this, and your virtualizedsystems and data storages become the weakest link in your data center security chain.Large enterprises are processing ever-increasing levels of data. To keep pace withthis escalation, organizations need to rethinknot just how they store and access data, buthow they preserve its safety and integrity.The larger the infrastructure, the greater thequantity of sensitive business data retained,and the more power and reliability demanded of the security solution protecting it.with your existing IT environment, or it will drag down data center performance levels andreduce overall operational efficiency as you grow.Regardless of whether you operate yourown data center or use the services of thirdparty (through Infrastructure-as-a-Serviceor IaaS), your security solution should notonly protect all critical data effectively andcontinuously: it should also preserve theperformance of data center infrastructure. Security specifically built for major virtualization platforms, including VMware with NSX,Citrix, Microsoft and KVM. Security for network attached storage (NAS) systems including EMC, NetApp, DELL, IBM,Hitachi and Oracle.Any data center offers numerous attacksurfaces vulnerable to potential exploitation. And as your data center grows insize, it’s bound to grow in complexity also,offering even more opportunities to thecybercriminal fraternity. Your security solution must step up to the challenge and scaleeffectively, which means fully integratingThe Solution: Kaspersky Security For Data CentersWe offer solutions that focus on protecting the two essential areas of your data center: yourvirtual infrastructure and your

Kaspersky Security Network Kaspersky Mobile Security Kaspersky Security Center file reputation url reputation patterns . Management Server Protection Web, Application and Device Controls Enterprise Mobility Management Data Encryption Automated Patch Management Protection for Collaboration Servers, Mail Servers and