Today, businesses need to implement security that protects their internal IT infrastructure and also extends outside traditional perimeters – so that mobile workers can access corporate systems and data without introducing new security risks. Kaspersky Endpoint Security for Business SELECT combines Kaspersky Lab’s award-winning anti-malware technologies, plus file server security and easy-to-configure endpoint controls – all to protect your internal IT infrastructure – plus rigorous mobile security and MDM that enables secure access to your corporate systems.
Protecting your data and your business reputation
By combining signature-based, proactive and cloud-assisted anti-malware technologies – plus Kaspersky’s two-way firewall and special Network Attack Blocker features – Kaspersky Endpoint Security for Business SELECT delivers multi-layer protection against the latest threats.
Protecting shared storage
The presence of just one infected file – on any of your servers – could adversely affect all computers on your network. That’s why Kaspersky Endpoint Security for Business SELECT provides anti-malware protection for file servers running Microsoft Windows or Linux.
Securing mobile access and Bring Your Own Device initiatives
Whenever a business enables mobile access to its corporate systems and data, new security risks can be introduced. That’s why Kaspersky Endpoint Security for Business SELECT includes powerful security for mobile devices. With Kaspersky mobile security technologies, your business can benefit from the cost and efficiency gains offered by BYOD initiatives – while Kaspersky protects you against viruses, Trojans, worms, spyware, bots and many other threats.
Simplifying mobile device management (MDM)
Kaspersky Endpoint Security for Business SELECT includes both mobile security and flexible MDM that gives you control over the security that’s running on your mobile endpoints and also helps you to manage how individual devices are allowed to access the corporate network. When a new mobile device appears on your corporate network, Kaspersky technologies ensure it’s visible to you – so you can manage the device’s security and control how it accesses the network.
Helping you to enforce your security policies
Kaspersky Endpoint Security for Business SELECT includes powerful controls that help you to ensure your corporate security policies are applied across your business. Flexible Application Controls, Device Controls and Web Controls make it easy for administrators to manage how applications run, control the use of removable devices and manage web usage – so your systems and data benefit from additional levels of protection.
Delivering security immediately
Kaspersky Endpoint Security for Business SELECT is preconfigured so that it can start protecting your systems and data immediately after you install it. In addition, because Kaspersky Endpoint Security for Business SELECT includes Kaspersky Security Center – Kaspersky’s centralised management console – you can rapidly adjust the configuration of almost all Kaspersky security applications that your business is running.
Adding more security when you need it
Kaspersky also offers a range of Targeted Security Solutions that let you add further protection technologies. There are Targeted Security Solutions for storage, mail, Internet gateways, virtualisation and collaboration – plus a far-reaching systems management solution.
Kaspersky Endpoint Security for Business SELECT delivers a compelling combination of world-class security technologies and easy-to-use management functionality.
Advanced Anti-Malware for Workstations*
Kaspersky Endpoint Security for Business SELECT delivers a combination of Kaspersky’s latest signature-based anti-malware, heuristic-based protection and also cloud-assisted technologies. This powerful combination helps to ensure superior, real-time anti-malware protection for your business.
The cloud-based Kaspersky Security Network (KSN) automatically gathers information about potential malware and suspicious behaviour that is occurring on any of millions of users’ systems. Although customers can choose whether to opt in or opt out of letting KSN collect information, all Kaspersky customers benefit from KSN’s ability to collect real-time data about potential threats and deliver a much more rapid response to newly identified threats. Third-party tests show that Kaspersky – assisted by its KSN technology – can identify some new threats in as little as 0.02 seconds. In addition, KSN’s real-time collection of information helps to minimise the occurrence of ‘false positives’.
Whenever an application launches on your network, Kaspersky’s System Watcher feature analyses how the application behaves. When System Watcher detects any suspicious behaviour, the application will be blocked. If the suspicious behaviour has resulted in some malicious activity, it’s easy to ‘roll-back’ your system to its previous state.
Urgent Detection System (UDS)
When a new item of malware is unleashed on the world, there is obviously a period of high risk – before a new malware signature can be released and distributed to users’ machines. To deliver earlier protection against new threats, Kaspersky runs an Urgent Detection System (UDS) database that is updated with information about newly discovered malware.
Active Disinfection technology
Kaspersky’s Active Disinfection technology works at the lowest levels of a computer’s operating system and neutralises malicious objects.
Host-based Intrusion Prevention System (HIPS) with Personal Firewall
Kaspersky’s advanced firewall helps to defend your corporate network against attacks. Inbound and outbound traffic are controlled in accordance with a choice of parameters – such as by application, individual port or IP address.
Blocking network attacks
Network Attack Blocker technology detects and tracks suspicious activity on your corporate network – and then responds in accordance with preconfigured criteria.
Frequent anti-malware updates
Kaspersky updates its malware database much more often than many other security vendors can achieve. This helps to ensure you benefit from more rapid protection against the latest malware. At the same time, Kaspersky’s use of pattern-based signatures boosts malware detection rates and helps to minimise the size of the updates that are downloaded onto your network.
*Kaspersky Endpoint Security for Business SELECT provides protection for the following platforms: Mac, Linux and Windows – including Windows 8.1 and OS X 10.9 Mavericks. Some features are not available on some platforms.
Protecting multi-platform file server environments
With its powerful antivirus engine, Kaspersky Endpoint Security for Business SELECT delivers world-class anti-malware protection for file servers running Windows, Linux or FreeBSD. In addition, Kaspersky’s optimised scanning processes help to ensure there’s no significant impact on the performance of your systems. The application protects terminal servers – Citrix or Microsoft – and also runs on cluster servers.
Improved manageability and reporting
Kaspersky recognises that every minute spent on administration and reporting, is time you could be devoting to strategically important activities. That’s why Kaspersky Endpoint Security for Business SELECT provides user-friendly management tools and clear reports – so you get easy, quick access to the controls and information that can help you to improve security.
In the event of a system failure, Kaspersky’s anti-malware protection will automatically restart when your system restarts.
Virtualisation support – for Windows-based file servers
Kaspersky’s file server security solution has achieved VMware Ready certification.
Mobile Security** and Mobile Device Management (MDM)**
By combining signature-based, heuristic and cloud-assisted anti-malware technologies, Kaspersky Endpoint Security for Business SELECT delivers powerful security for corporate mobile devices and Bring Your Own Device (BYOD) initiatives. It’s easy to scan applications, files, email attachments and media files.
Control tools for mobile devices
Application Control functionality makes it easy for administrators to ensure only company-approved software is allowed to run, and unwanted or grey applications are all blocked.
Web Control features let administrators block malicious or dangerous websites and also control access to websites that don’t conform to the company’s corporate security and usage policies – such as social networking, recruitment, gambling, retailing or adult websites, as well as proxy servers.
In addition, Kaspersky technologies automatically detect rooting / jailbreak incidents.
To help prevent your sensitive business data falling into the wrong hands, Kaspersky Endpoint Security for Business SELECT makes it easy to enable and manage the encryption features that are provided on most popular mobile devices.
Secure containers for corporate data
Bring Your Own Device (BYOD) initiatives can result in significant issues – including the problem of separating and securing corporate data on a device that also holds the user’s personal information. Kaspersky Endpoint Security for Business SELECT includes Kaspersky’s Containerisation technology. It’s easy to set up a separate container – within the user’s mobile device – so that corporate data is separated from the user’s personal data. You can enforce additional security for the container – by enabling automatic encryption within the container and / or demanding additional user authorisation before an application is allowed to launch.
In the event of an employee leaving the company, it’s easy to ensure sensitive corporate data is no longer stored on their personal mobile device. Kaspersky technology gives you remote access to the corporate container – so you can delete the container and all corporate data, without deleting the owner’s personal data on the device.
Anti-theft features for mobile devices
If a user’s mobile device is lost or stolen, remotely operated security features help you to protect corporate data and prevent access to your corporate network. You can remotely lock the mobile device, delete corporate data and find the device’s approximate location. If a thief changes the SIM card in the device, Kaspersky’s SIM Watch feature will send you the new SIM’s telephone number.
Wide-ranging MDM capabilities
Kaspersky Endpoint Security for Business SELECT includes flexible mobile device management (MDM) tools that fully support all functionality in Microsoft Exchange ActiveSync, Apple MDM Server and Samsung SAFE.
Kaspersky technologies make it easy for administrators to:
Enforce the use of PINs on all mobile devices
Impose restrictions on passwords – to ensure only complex passwords are used
Manage encryption features
Block the use of a device’s camera
Manage many other device features
With Kaspersky’s MDM tools, there’s no need to use separate consoles. You can perform all MDM actions from Kaspersky’s single management console.
**Only available for mobile platforms that are included in Kaspersky’s list of supported platforms. Some features are not available for some of the supported mobile platforms.
Kaspersky Endpoint Security for Business SELECT includes Application Control capabilities that help IT administrators to manage how applications run on your corporate network:
Application Monitor – monitors applications and classifies them as untrusted, restricted or trusted
Application Startup Control – makes it easy to block, allow or audit the launch of applications
Application Privilege Control – controls whether an application is allowed to access the registry, file system or other resources
You can enable a Default Allow policy that blocks blacklisted applications, or apply a Default Deny policy that only allows whitelisted applications to launch.
Currently, Kaspersky is the only company that has invested in its own Whitelist Lab. The Lab assesses the security status of common applications and determines whether they can be added to the whitelist database of programs that are safe to run. The information from Kaspersky’s dynamic whitelisting service helps to support effective Application Control.
Whitelist updates are delivered from the cloud-based Kaspersky Security Network – which helps to ensure the very latest whitelist information is available to Kaspersky’s customers.
It’s easy for users to attach removable devices to almost any system on the corporate network – and those devices may prove to be the source of malware infections or could be used to steal confidential business data. Kaspersky’s Device Control features enable you to ensure that only authorised devices are attached to your corporate network – and also ensure they are only used for legitimate processes:
You can control device access privileges – to help eliminate the risk of data loss or the introduction of malware from unauthorised devices. Access privileges can be set up according to the type of device, its bus or a specific device’s serial number.
To help ensure your users are productive during working hours – and your ‘data in motion’ policies are complied with – Device Control also lets you specify the times during which specific controls are applied.
Controlling web usage
Web Control functions give you an easy way to monitor and filter your users’ web browser activities – according to category, content or type of data. It’s easy to prohibit, limit, allow or audit your users’ activities on individual websites or categories of sites, such as games websites, social networks or gambling sites. Web Control helps to ensure users are not able to access infected sites or inappropriate content – and it helps to boost day-to-day productivity.
Kaspersky Endpoint Security for Business SELECT includes an easy-to-use management console that gives you centralised control over virtually all Kaspersky security applications and features. This single console –Kaspersky Security Center – gives you granular-level management of Kaspersky security across your corporate network.
The following Kaspersky applications are all included within Kaspersky Endpoint Security for Business SELECT: