Live, interactive cybersecurity training available through SANS Live Online. View upcoming events.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Once you register, you can download the presentation slides below.

EPP or EDR? Why not both? Choose Next Generation Endpoint Security

  • Wednesday, December 05, 2018 at 10:30 AM EST (2018-12-05 15:30:00 UTC)
  • Neil Patel, Jake Williams


  • Cisco Systems

You can now attend the webcast using your mobile device!



The Endpoint security industry today is still predominantly split by two classes of products, EPP and EDR. EPP (Endpoint Protection Platform) covers traditional anti-malware scanning, whereas EDR (Endpoint Detection and Response) covers some more advanced capabilities like detecting and investigating security incidents, and ability to remediate endpoints to pre-infection state. It is obvious to security practitioners that both EPP and EDR capabilities are required for complete endpoint security. As a result, the market is moving to a unified, more complete solution, which is Next Generation Endpoint Security. Join us as we talk about some of the key elements in both EPP and EDR, and how Next Generation Endpoint Security helps to bring you the best of both worlds, all while reducing complexity.

Speaker Bios

Neil Patel

Neil Patel is a Technical Product Marketing Manager for Cisco's Advanced Threat solutions portfolio, focusing on AMP for Endpoints, Ciscos Advanced endpoint security offering. Neil joined the industry five years ago, and has worked closely with various groups within the Cisco security product portfolio and also with customers in both pre and post sales. On the weekends he can usually be found under the hood of his car or hiking around one of the various North Carolina trails. Neil holds a bachelor's degree in Computer Engineering from Georgia Tech.

Jake Williams

Jake Williams is a SANS analyst, senior SANS instructor, course author and designer of several NetWars challenges for use in SANS' popular, "gamified" information security training suite. Jake spent more than a decade in information security roles at several government agencies, developing specialties in offensive forensics, malware development and digital counterespionage. Jake is the founder of Rendition InfoSec, which provides penetration testing, digital forensics and incident response, expertise in cloud data exfiltration, and the tools and guidance to secure client data against sophisticated, persistent attacks on-premises and in the cloud.

Need Help? Visit our FAQ page or email

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.