kaspersky total security for business


This is Kaspersky Lab’s most comprehensive business security solution – delivering rigorous protection for your corporate IT network. As well as security for desktops, laptops & file servers – plus data encryption, endpoint control tools & mobile security – it includes special protection technologies for mail servers, collaboration servers and traffic flowing through Web gateways. In addition, extended systems management tools automate a wide range of administration tasks – to save you time and resources.

Delivering multi-layer protection – for workstations and more
Our powerful combination of signature-based, heuristic, behavioral and cloud-assisted technologies delivers multi-layer defenses for any combination of Windows, Mac & Linux workstations. In addition, Application Control, Device Control and Web Control tools complement our protection technologies – helping you to manage applications, block and / or control the use of removable devices and apply safe Web access policies. In addition, you get protection for Windows & Linux file servers – to secure them against known, unknown and advanced threats.

Automatically detecting vulnerabilities & distributing patches
Unpatched vulnerabilities – within operating systems & applications – are frequently used as entry points for attacking businesses. Kaspersky TOTAL Security for Business includes automatic vulnerability scanning and automatic patch distribution – to identify known vulnerabilities on your network and apply patches more rapidly.

Guarding against loss of sensitive data
Powerful data encryption helps you to ensure important files, folders, disks and removable devices are encrypted. Then if a laptop or mobile device is lost or stolen, it needn’t lead to the leakage of sensitive data. With the data encrypted into an unreadable form, your business is less likely to suffer the embarrassment and costs associated with data security breaches. Although some encryption products can be complex to set up and use, our data encryption is easy to configure and can be managed from the same management console used to control all of our endpoint security technologies.
In addition, content-aware Data Loss Prevention options – for collaboration and mail security – help to protect confidential information and boost compliance… by preventing common methods of data leakage.

Securing mobile devices
By combining rigorous mobile security technologies and flexible Mobile Device Management (MDM) & Mobile Application Management (MAM) capabilities, Kaspersky TOTAL Security for Business helps you to protect smartphones & tablets – and the corporate systems and data that they access. Compatible with the most popular mobile platforms, our security and management technologies defend both corporate-issued and BYOD mobiles against malware, unauthorized access – including protection for lost / stolen devices – and more.

Cutting complexity from IT management
Managing a complex IT environment doesn’t have to be a complex task. With a broad array of systems management functionality, Kaspersky TOTAL Security for Business reduces the complexity of managing both security and systems. By automating key security and administration tasks, delivering improved visibility and providing a single management console, we help you to free up time for other mission-critical projects.

Protecting your email
Optimized security scanning and intelligent spam filtering combine to protect mail traffic, block more spam emails – achieving almost no false positives – and reduce the volume of traffic on your corporate network. A wide range of mail servers – including Microsoft Exchange, IBM Lotus Notes / Domino, Sendmail, qmail, Postfix, Exim and CommuniGate Pro – are supported. For Microsoft Exchange servers, content-aware Data Loss Prevention is available as an extra option.

Securing your web traffic
With security technologies that protect web traffic flowing through most popular, Windows-based or Linux-based Web gateways, Kaspersky TOTAL Security for Business helps to ensure your users can access the Internet without falling prey to Web-based threats.

Enabling secure collaboration
Our security for SharePoint platforms includes anti-malware, content filtering and file filtering – to help your business enforce its collaboration policies and prevent inappropriate content being stored on your corporate network. Content-aware Data Loss Prevention is available as an extra option.

Centralizing systems management & security
Kaspersky Security Center – our highly integrated management console – gives you centralized control over all Kaspersky Lab endpoint security technologies. In addition, because Kaspersky TOTAL Security for Business supports two of the most popular security information and event management (SIEM) products – HP ArcSight and IBM QRadar – enterprise-level businesses can benefit from integrated monitoring of complex IT environments.

World-class security for complex IT environments – including laptops, desktops, file servers, mobile devices & BYOD, Web gateways, mail systems and collaboration systems – together with extended systems management functionality

Protecting Windows, Linux & Mac desktops & Laptops

Delivering multi-layered security
Our latest anti-malware engine combines signature-based security, heuristic & behavioral analysis and cloud-assisted technologies – to protect your business against known, unknown and advanced threats. It can defend any combination of Mac, Linux and Windows desktops and laptops.

Updating security more efficiently
Because cybercriminals are continually launching new and more complex malware, we deliver database updates on a much more frequent basis than many other security vendors. In addition, we use multiple advanced security technologies to ensure we deliver greatly improved detection rates – while also cutting the size of updates… so more of your communications bandwidth is available for other tasks.

Protecting against unknown and advanced threats
When a new malware item is unleashed on the world, there’s a period of high risk. To deliver zero-hour protection against these threats, Kaspersky Lab technologies and threat intelligence continually evolve to ensure your business is protected from even the most sophisticated, new threats.

Detecting suspicious behavior
Whenever an application launches on your corporate network, our System Watcher module monitors the application’s behavior. If suspicious behavior is detected, System Watcher automatically blocks the application. In addition – because System Watcher keeps a dynamic log of the operating system, registry and more – it automatically rolls back malicious actions that the malware implemented before it was blocked.

Protecting against exploits
Our innovative Automatic Exploit Prevention (AEP) technology helps to ensure malware can’t exploit vulnerabilities within the operating systems or applications that are running on your network. AEP specifically monitors the most frequently targeted applications – including Adobe Reader, Internet Explorer, Microsoft Office, Java and many more – to deliver an extra layer of security monitoring and protection against unknown threats.

Controlling applications and connectivity
For some applications – even though the applications may not be classed as malicious – their activities may be regarded as high-risk. In many cases, it’s advisable that these activities are restricted. Our Host-Based Intrusion Prevention System (HIPS) restricts activities within the endpoint, according to the ‘trust level’ that has been assigned to the application. HIPS works together with our application-level Personal Firewall – which restricts network activity.

Blocking network attacks
Network Attack Blocker technology detects and monitors suspicious activities on your corporate network – and lets you preconfigure how your systems will respond if suspicious behavior is identified.

Using the power of the cloud – for even better security
With millions of users letting the cloud-based Kaspersky Security Network (KSN) receive data about suspicious behavior on their computers, your business can benefit from improved protection against the latest malware. This real-time flow of data ensures customers can benefit from a rapid response to new attacks – and it helps to minimize the incidence of ‘false positives’.

Protecting your file servers

Securing heterogeneous environments
Our award-winning security protects file servers running Windows, Linux or FreeBSD. Optimized scanning processes help to ensure there’s minimal impact on the performance of your servers. In addition to protecting cluster servers, we also defend Microsoft and Citrix terminal servers.

Ensuring reliable protection
If one of your file servers develops a fault, our security technologies will automatically re-launch when the file server restarts.

Boosting manageability
Every minute you have to spend on administration and generating reports, is time you could be devoting to strategically important activities. That’s why we provide a centralized console that lets you manage security on all your endpoints – file servers, workstations and mobile devices – and makes it easy to generate detailed reports.

Protecting mobile devices – Android, iSO & Windows Phone

Robust mobile security
By combining the industry’s most advanced technologies, we defend against the latest mobile threats. Anti-phishing protects against websites that try to steal information or identity details – and anti-spam helps to filter out unwanted calls & texts. Flexible control tools let you block the launch of unauthorized applications and block access to dangerous websites. Rooting and jailbreaking incidents are automatically detected – and the devices are blocked.

Separating corporate and personal data
Our ‘app wrapping’ technology lets you set up special containers on each device. Corporate applications are stored in the containers – totally separated from the user’s personal data. You can enforce encryption for all containerized data and prevent data from being copied and pasted outside the container – plus you can request additional user authorization before containerized applications are allowed to launch. If an employee leaves your business, the remotely operated Selective Wipe feature lets you delete the corporate container – without deleting the device owner’s personal data and settings.

Supporting common MDM platforms
With improved mobile device management (MDM) capabilities, it’s easy to apply group or individual MDM policies to Microsoft Exchange ActiveSync and iOS MDM devices – through a single interface. Support for Samsung KNOX lets you manage various settings for Samsung devices.

Locking, wiping and locating missing devices
Remotely operated security features help to protect corporate data on missing devices. Administrators and users can lock the device, delete corporate data and find the device’s location. If a thief changes the SIM card, our SIM Watch feature sends you the new phone number – so you can still run the anti-theft features. Support for Google Cloud Messaging (GCM) helps ensure Android phones receive anti-theft commands rapidly.

Self-Service Portal
Our special Self-Service Portal makes it easy to enable personal mobile devices onto the corporate network. In addition, the portal gives users remote access to key anti-theft features – so users can rapidly respond to the loss of a device and reduce the risk of data loss, without adding to the load on administrators.

Easing the burden on IT administrators
A single centralized console lets you manage mobile devices – and their security – and makes it easy to apply consistent policies across different mobile platforms. In addition, our Web Console lets you manage mobile devices and their security – plus the security of other endpoints – from anywhere you can get online.

Controlling applications, devices and Internet access
Dynamic Whitelisting – to complement security
Our Application Control is the industry’s most comprehensive implementation. We’re the only security vendor that has invested in establishing its own Whitelisting Lab that checks applications for security risks. Our database of whitelisted applications includes over 1.3 billion unique files – and it’s growing by a further 1 million files per day. Application Control and Dynamic Whitelisting makes it easier for you to run a Default Deny policy that blocks all applications, unless they’re on your whitelist. If you’re looking to introduce or update a Default Deny policy, our new test mode lets you set up the policy in a test environment – so you can check your policy is correctly configured, before you ‘go live’.

Preventing the connection of unauthorized devices
Device Control tools make it easy to manage which devices are allowed to access your corporate IT network. You can set up controls that are based on the time of day, geographic location or the type of device. You can also align the controls with Active Directory – for granular administration and policy assignment. Administrators can also use masks in the creation of Device Control rules – so multiple devices can easily be whitelisted for use.

Monitoring and controlling Internet access
Our Web Control tools let you set up Internet access policies and monitor Internet usage. It’s easy to prohibit, limit, allow or audit your users’ activities on individual websites or categories of sites, such as games websites, social networks or gambling sites. Geographic and time-of-day controls may be aligned with Active Directory – to help in administration and setting policies.

Centralizing Management tasks

Letting you control all functions from one console
Kaspersky Endpoint Security for Business SELECT includes Kaspersky Security Center – a single unified management console that gives you visibility and control of all of the Kaspersky Lab endpoint security technologies that you’re running. Kaspersky Security Center lets you manage security for your mobile devices, laptops, desktops, file servers, virtual machines and more – with the convenience of a ‘single pane of glass’ console.

Delivering a higher level of integration
Because tightly-integrated code results in products that deliver improved security, performance and manageability, all of our endpoint technologies have been developed by our own in-house team. All of our endpoint protection functionality is contained in the same codebase – so there are no incompatibility issues for you to deal with. Instead, you benefit from seamlessly integrated security technologies that do more to protect your IT environment – while centralized management saves you time