Bitdefender GravityZone Business Security

Bitdefender GravityZone is a resource-efficient security solution that provides high performance and protection while delivering centralized management, easy deployment and the freedom to choose between a cloud or an on-premise hosted management console.
GravityZone Business Security is designed to protect organizations, from small to medium, covering any number of file servers, desktops, or laptops, physical or virtual machines. Business Security is based on a layered next-gen endpoint protection platform with the industry’s best prevention, detection and blocking capabilities, using proven machine learning techniques, behavioral analysis and continuous monitoring of running processes.

KEY FEATURES

Machine Learning Anti-Malware
Machine learning techniques use well-trained machine models and algorithms to predict and block advanced attacks. Bitdefender’s machine learning models use 40,000 static and dynamic features and are continuously trained on billions of clean and malicious file samples gathered from over 500 million endpoints globally. This dramatically improves the effectiveness of malware detection and minimizes false positives.

Process Inspector
Process Inspector operates in zero-trust mode, continuously monitoring all processes running in the operating system. It hunts for suspicious activities or anomalous process behavior, such as attempts to disguise the type of process, execute code in another process’s space (hijack process memory for privilege escalation), replicate, drop files, hide from process enumeration applications and more. It takes appropriate remediation actions, including process termination and undoing changes the process made. It is highly effective in detecting unknown advanced malware, including ransomware.

Advanced Anti-Exploit
Exploit prevention technology protects the memory and vulnerable applications such as browsers, document readers, media files and runtime (ie. Flash, Java). Advanced mechanisms watch memory access routines to detect and block exploit techniques such as API caller verification, stack pivot, return-oriented-programming (ROP) and others. GravityZone’s technology is equipped to tackle advanced, evasive exploits that targeted attacks rely on to penetrate an infrastructure.

Endpoint Control and Hardening
Policy-based endpoint controls include the firewall, device control with USB scanning, and web content control with URL categorization.

Anti-Phishing and Web Security Filtering
Web Security filtering enables real-time scanning of incoming web traffic, including SSL, http and https traffic, to prevent the download of malware to the endpoint. Anti-phishing protection automatically blocks phishing and fraudulent web pages.

Full Disk Encryption
GravityZone-manages full disk encryption uses Windows BitLocker and Mac FileVault, taking advantage of the technology built into the operating systems. It is available as an add-on to GravityZone Business Security.

Patch Management
Unpatched systems leave organizations susceptible to malware incidents, outbreaks, and data breaches. GravityZone Patch Management helps you keep your OS and Applications up to date across the entire Windows install base – workstations, physical servers and virtual servers. It is available as an add-on to GravityZone Business Security.

Response and Containment
GravityZone offers the best clean-up technology on the market. It automatically blocks/contains threats, kills malicious processes and roll backs changes.

Ransomware Protection
The solution is trained based on 1 trillion samples from over 500 million endpoints worldwide. Regardless of how much the malware or ransomware is modified, Bitdefender can accurately detect new ransomware patterns, in both pre-execution and run-time mode.

Largest Security Intelligence Cloud
With over 500 million machines protected, the Bitdefender Global Protective Network performs 11 billion queries per day and uses machine learning and event correlation to detect threats without slowing down users.

Automate Threat Remediation and Response
Once a threat is detected, GravityZone BS instantly neutralizes it through actions including process terminations, quarantine, removal and roll-back of malicious changes. It shares threat information in real time with GPN, Bitdefender’s cloud-based threat intelligence service, to prevent similar attacks worldwide.

GravityZone Control Center
GravityZone Control Center is an integrated and centralized management console that provides a single-pane-of-glass view for all security management components. It can be cloud-hosted or deployed locally. GravityZone management center incorporates multiple roles and contains the database server, communication server, update server and web console.

BENEFITS

Boost Operational Efficiency with Single Agent and Integrated Console
Bitdefender’s single, integrated endpoint security agent eliminates agent fatigue. The modular design offers maximum flexibility and lets administrators set security policies. GravityZone automatically customizes the installation package and minimizes the agent footprint. Architected from the ground up for post-virtualization and post-cloud security architectures, GravityZone provides a unified security management platform to protect physical, virtualized and cloud environments.

• Implement a powerful but simple solution and eliminate the need for dedicated servers, maintenance or more IT staff
• Start faster with provided security policy templates
• Centralized management, single pane of glass
• Reduced costs and centralized security for any number of users
• With centralized management, employees never have to update, monitor or troubleshoot security again, and can focus 100% on the
business.
• Simple remote deployment
• Granular reports – Granular policy settings are available for advanced admins, but those without an IT background will also find the solution
simple to manage
• Updates are automatic and users can’t interfere with settings or deactivate protection, so your business is protected
• Apply policies based on location or user and allow different levels of freedom; save time when creating new policies by using ones that are
already created.