Re: Endpoint Protection - App Whitelisting?

[Scott Stoops <sstoops () ASHLAND EDU>]

We looked at application whitelisting using several different tools but did
not go down that path because of the management problem. We have been using
Crowdstrike's Falcon endpoint security for about 6 months and so far are
very pleased with it. I'd be happy to chat offline about our experience.

On Mon, Nov 13, 2017 at 1:19 PM Chad Tracy <chad.tracy () colby edu> wrote:

> Good afternoon,
>
> We currently use Carbon Black's CB Protection (application whitelisting)
> on some of our end user computers (*we have a licensing for 300
> endpoints... however we only ever got it working on around 70 Windows
> machines...)* It has not been working out well and we are looking to move
> in a different direction.
>
> I recently learned, from a call with Gartner, that "typically" application
> whitelisting is utilized on servers and systems that are fairly locked down
> (think of machines used by the insurance and medical industry, kiosks...)
>
> Knowing this, we are looking to see what you all are doing to lock down
> your systems to assist in ransomware and zero-day incidents:
>
> Have any of you had luck in deploying application whitelisting on their
> end users machines... or is this a lost cause that takes to much money and
> FTEs to support?
>
> Do you have Endpoint protection deployed on your campus?
>
> If so, who with?
>
> Kind Regards,
>
> Chad Tracy
> Director of Information Security
> Colby College
> Waterville, ME 04901
> 207 . 859 . 4199 <(207)%20859-4199>
> chad.tracy () colby edu
-- 
Scott Stoops
Security Analyst II
Office of Information Technology | 100 Patterson Technology Center
Ashland, OH 44805
(w) 419-289-5405
sstoops () ashland edu