Categories
Welcome Center
Education & Development
Discussions
Certification Preparation
Recent Posts
Groups
Free Resources
Ebooks
Free Workshops
Trending Certifications Infographic
Infosec Training
IT & Security Training
Live Boot Camps
Security Awareness Training
About Infosec Institute
Home
Discussions
IT & Cybersecurity
Best Solution For Controlling New Application Install In Custom Software Environments
egrizzly
Hi all,
For those of you who have experience successfully implementing controls for adding new software in custom environments where the distribution of software use is a combination of custom software, off-the-shelf software, and unsigned (but legitimate) applications.
The environment I'm in is as follows:
- Total count of 5000+ applications comprising of custom software and unsigned (but legitimate) applications.
- PAM solution exists
- EDR solution exists (Crowdstrike Falcon)
- Geographical Footprint: Globally spread out along North America, Asia, Europe, Africa
The problem we're facing is that quite frequently the EDR solution alerts new custom software installs as malicious. Alerts also occur where non-authorized users (those not in Help Desk or Deskside Support) seem to be able to install software on company laptops.
Our Goal: We would like to be able to configure the security environment so it stops the install of software that is not:
1. Legitimate Software
2. being installed by Authorized Personnel (e.g. Help Desk and Deskside Support)
A dozen high fives for all your suggestions, tips, and comments guys.
Find more posts tagged with
endpoint detection and response.
unauthorized applications
Save $250 on 2025 certification boot camps from Infosec!
Book now with code EOY2025
Button
Comments
There are no comments yet
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
INFOSEC Boot Camps
$250
OFF
Use code
EOY2025
to receive $250 off your 2025 certification boot camp!
BROWSE BOOT CAMPS
