EDR + AV can be installed on any Mac OS Ventura or higher, Windows 10 21H2 and above, Windows server 2016 and above, Any Linux 32 and 64-bit systems that contain system, system/init.d and upstart. AV is not supported on Linux.

EDR (Endpoint Detection and Response) is a cybersecurity solution that continuously monitors and analyzes activity on endpoints to detect, investigate, and respond to threats. It provides real-time visibility and tools to contain and remediate attacks before they cause damage

Light SIEM (Security Information Event Management) refers to availability of logging/alerting of a local firewall at the client's location. Therefore, in addition to the various computers reporting to the SIEM, firewall logs are also being sent and processed by the monitoring team for any anomalies.

A US based OPS team is looking at all critical events and determine any kind of escalation needed. In addition, the team here at Zalcore will occasionally monitor the incoming alerts and act accordingly. Any high level events will be addressed and escalated to you.

While each of our clients is completely segmented and no events or assets are mixed, at this point in time there is no way for us to provide your own login to the portal. However, in some cases we may send screenshot or join you to a shared screen session. 

We support all major firewall brands but you may contact us to be certain. In addition, a Windows machine (Virtual or physical) is required to get firewall logs analyzed.