Call a Specialist Today! 800-886-5369

Bitdefender GravityZone Ultra Suite
Uncover And Stop Elusive Threats With Agility And Precision


Layered Next-Generation Endpoint Security Now With EDR

GravityZone Ultra Suite Featuring GravityZone XDR

CONTACT US»

Bitdefender Products
Bitdefender GravityZone Ultra Suite
Bitdefender GravityZone Ultra Suite
Contact us for Pricing!

Click here to jump to more pricing!

Overview:

GravityZone Ultra, featuring Endpoint Security XDR, excels where pure-play EDR products are too complex and noisy by smoothly preventing, detecting and responding to sophisticated attacks that evade traditional anti-malware. In a single, unified security suite, GravityZone Ultra provides:

  • Attack surface reduction (via fi rewall, application control, content control and patch management)
  • Data protection (via full disk encryption)
  • Pre-execution detection and eradication of malware (via tunable machine learning, real-time process inspection and sandbox analysis)
  • Automated detection, easy investigation and in-place remediation via the newly released endpoint event recorder and threat analytics in Endpoint Security XDR

The result is seamless threat prevention, accurate incident detection and smart response to minimize exposure to infection and stop breaches.

As an integrated endpoint protection suite, GravityZone Ultra ensures a consistent level of security for the entire IT environment, so attackers fi nd no poorly protected endpoints to use as starting points for malicious action against the organization. GravityZone Ultra relies on a simple, integrated architecture with centralized management for both endpoints and datacenter. It lets companies deploy the endpoint protection solution quickly and requires less administration effort after implementation.

Figure 1. Bitdefender XDR: prevention, detection and response in one agent, managed by the GravityZone console
Figure 1. Bitdefender XDR: prevention, detection and response in one agent, managed by the GravityZone console

Add-Ons

GravityZone Integrated Patch Management
Unpatched systems leave organizations susceptible to malware incidents, outbreaks, and data breaches. Keep your OS and Applications up to date across the entire Windows install base - workstations, physical servers and virtual servers with GravityZone Patch Management.

GravityZone Full Disk Encryption
GravityZone FDE protects data for the entire endpoint hard drive by leveraging the encryption mechanisms provided by Windows (BitLocker) and Mac (FileVault). It takes advantage of the native device encryption to ensure full compatibility and maximized performance. GZ FDE is integrated into the GravityZone Console and Agent, with no additional agent to deploy or key management server to install. The use of existing endpoint security infrastructure to manage Full Disk Encryption enables fully centralized deployment with minimal administrative effort.

GravityZone Control Center

GravityZone Control Center is an integrated and centralized management console that provides a single-pane-of-glass view of all security management components, including endpoint security, datacenter security, security for Exchange and mobile device security. It can be cloudhosted or deployed locally. GravityZone management center incorporates multiple roles and contains the database server, communication server, update server and web console. The Control Center is delivered as one virtual appliance image and can be deployed in under 30 minutes. For larger enterprises, it can be configured to use multiple virtual appliances with multiple instances of specific roles with built-in load balancer for scalability and high availability.

Benefits:

EDR Made Easy

With clear visibility into indicators of compromise (IOCs) and one-click threat investigation and incident response workflows, GravityZone Ultra reduces resource and skill requirements for security teams. The new endpoint data recorder is a seamless addition to the existing threat-protection stack and performs a broad capture of system activities (fi le & process creation, program installation, module Loading, registry modifi cation, network connections etc.) to aid in an enterprise-wide visualization of the chain of events involved in the attack.

The threat analytics module operates in the cloud and continuously sifts through behavioral events in system activities and creates a prioritized list of incidents for additional investigation and response.

Key Benefits

  • Real-time endpoint visibility
  • Expose suspicious activities
  • One-click investigation
  • Alert triage and incident analysis visualization
  • Track live attacks and lateral movements
  • Rapid response
  • Reduce dwell time with fast resolution, containment and remediation

Figure 2. The Incident details page provides a clear overview of the “Blast radius” of the incidents. The practitioner can easily acquire supporting evidence and respond.
Figure 2. The Incident details page provides a clear overview of the “Blast radius” of the incidents. The practitioner can easily acquire supporting evidence and respond.

Enhance security optics. Avoid alert fatigue.

Only relevant, correlated and severity-rated events are presented for manual analysis and resolution. Noise and redundant information is kept at a minimum, as the vast majority of attacks and advanced attacks are blocked at the pre- or on-execution stages. Elusive threats, including fi leless malware, exploits, ransomware and obfuscated malware are neutralized by the highly effective layered next-gen endpoint prevention technologies and on-execution behavior-based process inspector. Automatic response and repair eliminate the need for human intervention in blocked attacks.

High-fidelity detection lets security personnel focus only on real incidents and threats:

  • Minimize noise and distraction from false alarms
  • Reduce the volume of incidents with effective threat prevention
  • Eliminate manual remediation of blocked attacks with automatic remediation and repair

Enhance security optics. Avoid alert fatigue.

Smart response means evolved prevention

Because GravityZone Ultra is an integrated prevent-detect-respond solution, it enables quick response and restoration of endpoints to a “betterthan-before” stage. Leveraging threat intelligence gathered from the endpoints during the investigation process, a single interface provides the tools to immediately adjust policy and patch vulnerabilities to prevent future incidents, improving the security of your environment.

Smart response means evolved prevention

Comprehensive endpoint security platform in one agent and console

GravityZone Ultra inherits all the hardening and next-generation prevention controls included in Endpoint Security HD and the GravityZone Elite suite:

  • Minimize exposure with strong prevention
  • Machine-learning and behavior-based detection stops unknown threats at pre-execution and on-execution
  • Detect and block script-based, fileless, obfuscated and custom malware with automatic remediation
  • Memory protection to prevent exploits
  • Reduce attack surface by enabling IT security controls
  • Integrated client firewall, device control, web content filtering, app control, patch management and more.

Figure 3. Bitdefender XDR: The Comprehensive Endpoint Security Platform
Figure 3. Bitdefender XDR: The Comprehensive Endpoint Security Platform

Protecting the Datacenter

Fully integrating with Bitdefender Endpoint Security XDR, the Datacenter Protection component of GravityZone Elite suite is the Security for Virtualized Environments (SVE). It is the most advanced virtualized datacenter security solution on the market in antimalware protection for virtual machines, optimizing not only consolidation ratios but also operating costs. GravityZone SVE is an enterprise solution that can support even the largest datacenters. Integration into a production environment is simple, and virtual environments of any size can benefit from this technology.

  • Protecting the DatacenterAgility
    SVE enables security automation across the datacenter lifecycle at rollout as well as during day-to-day security operations of a highly dynamic virtual environment. It integrates with VMware (vCenter, vShield, NSX), Citrix XenCenter and the Nutanix Enterprise Cloud Platform and enables fast automated provisioning.
  • Operational efficiency
    The unifi ed GravityZone Control Center management console simplifies security deployment, maintenance and upgrades, providing centralized visibility into all virtual and physical servers and workstations. It supports centralized creation and automatic administration of security policies to help streamline IT operations while improving compliance.
  • Improved infrastructure utilization
    Centralized scanning and a small footprint agent greatly reduce the use of memory, disk space, CPU and I/O activity on host servers, increasing VM density and ROI on IT infrastructure.
  • Universal compatibility
    Compatible with all leading hypervisor platforms (VMware ESXi, Microsoft Hyper-V, Citrix Xen, Red Hat KVM, and Nutanix AHV) and both Windows and Linux as guest OSs.
  • Unlimited linear scalability
    Multiple SVAs can be used to increase scanning capacity as the Datacenter grows and more VMs are created. As an existing SVA reaches a certain load threshold, new ones can be deployed to accommodate growth. An additional benefit of deploying multiple SVAs is improved resilience and load sharing: the load from a failed/overloaded SVA can be taken over by another active or less loaded SVA.
  • Layered Next-gen defenses
    GravityZone Security for Virtualized Environments incorporates all key security layers of Endpoint Security including HyperDetect, Sandbox Analyzer and fileless attacks detection methods to provide leading protection for enterprise digital assets stored or processed in the datacenter.

Features:

  • Engineered to enable datacenter transformation: SDDC, hyper-convergence and hybrid cloud
  • Comprehensive integrations with VMware, Nutanix, Citrix, AWS, and Microsoft for investment protection, deployment automation and inventory and license management
  • Support of multiple virtualization and cloud environments from a single deployment
  • Single-pane-of-glass visibility and centralized manageability across the hybrid cloud
  • Efficient, resilient and scalable SVA-based architecture supporting all hypervisors
  • Maximized VM density, low boot latency and optimal application performance
  • Advanced layered security with continuous coverage across the hybrid cloud

Compare Solutions:

GravityZone is a business solution that can be installed locally or hosted by Bitdefender. Multi-layered protection with proven machine learning, advanced heuristics, anti-ransomware, powerful anti-exploit, signatures, Firewall and Device Control are included in each of the options below.


  GravityZone Business Security GravityZone Advanced Business Security GravityZone Elite Security GravityZone Enterprise Security
  Ideal for small businesses looking for simple security Recommended to midsized companies looking for comprehensive protection Recommended to midsized and large companies looking for aggressive protection against sophisticated threats Flexible solution for larger organizations with datacenters using virtualization
  Windows 10 compatible Windows 10 compatible Windows 10 compatible Windows 10 compatible
Management options On premise / Cloud On premise / Cloud On premise / Cloud On premise only
Endpoint security Endpoint Security SD Endpoint Security SD Endpoint Security HD Endpoint Security SD
Datacenter security (SVE)  
Datacenter licensing
Dedicated CPU licensing for virtual servers
     
Mobile Security / MDM  
Available on-premise only

Available on-premise only
Security for Exchange  
Licensing
bundle

bundle

bundle

a la carte
Patch Management
add on, available on-premise only

add on, available on-premise only

add on, available on-premise only

add on
Full disk encryption
add on

add on

add on

add on
Security for AWS
Protection for AWS machines managed from the same cloud console

add on

add on

add on
 
HVI      
add on
Machine Learning AV
Anti-exploit
HyperDetect      
Endpoint integrated Sandbox      
Visibility of suspicious activities      
Process Inspector
Clean up
Smart Centralized Scanning
Ability to offload scanning to central dedicated appliance
 
Monthly licensing for MSPs
Available through the dedicated solution for Managed Service Providers.

purchased separately
     
Details Covers servers and desktops. Max 30% of the units can be servers. Covers desktops, servers or mobiles + Exchange mailboxes. Max 35% of the units can be servers. Covers desktops, servers + Exchange mailboxes. Max 35% of the units can be servers. Each item can be purchased separately and can be activated based on its own license key.

Documentation:

Download the Bitdefender GravityZone Ultra Suite Datasheet (.PDF)

Pricing Notes:

Bitdefender Products
Bitdefender GravityZone Ultra Suite
Bitdefender GravityZone Ultra Suite
Contact us for Pricing!