What is Endpoint Detection and Response (EDR)?
Originally coined by Anton Chuvakin of Gartner in 2013, endpoint detection and response—also known as endpoint threat detection and response—refers to the various technologies used to protect computer networks and internet-connected devices. These devices can include desktops, laptops, servers, smartphones, etc. and the average IT department can manage anywhere between a few hundred to a few thousand endpoints at any given time. EDR technology analyzes data to determine whether the endpoint is experiencing an attack and if so, instigates automated processes to alert security teams, isolate endpoints that could be affected, and apply insights from the attack to other platforms across the environment.