Comparison of commercial license tiers

The set of features available in Kaspersky Managed Detection and Response depends on the tier of your commercial license (see the table below).

Comparison of Kaspersky Managed Detection and Response commercial license tiers

Feature

MDR / MDR Expert

MDR Optimum*

MDR Basic*

MDR Advanced*

MDR Prime*

24x7 monitoring, incident detection and management

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Automatic threat hunting

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Response playbooks and automatic incident response

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Security health check and asset visibility

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Kaspersky MDR Web Console with dashboards and reports

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Ability to receive advanced incident information

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Incident history retention period

1 year

1 year

1 year

1 year

1 year

Raw data retention period

3 months

1 month

1 month

3 months

3 months

Managed threat hunting and incident investigation

yes_icon

no(new)

no(new)

yes_icon

yes_icon

Extended expert support for incident management

yes_icon

no(new)

no(new)

yes_icon

yes_icon

Access to Kaspersky Threat Intelligence Portal

yes_icon

no(new)

no(new)

yes_icon

yes_icon

API for exporting Kaspersky MDR data

yes_icon

no(new)

no(new)

yes_icon

yes_icon

Customers can create a custom incident to be processed by the Kaspersky MDR solution**

yes_icon

no(new)

no(new)

yes_icon

yes_icon

Localized data storage and workgroups

no(new)

no(new)

yes_icon

yes_icon

yes_icon

Multitenancy

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Adding and editing comments to incidents

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Adding and editing attachments to incidents

yes_icon

yes_icon

yes_icon

yes_icon

yes_icon

Advanced incident investigation: analysis to establish the background, circumstances and detailed attack mechanism

no(new)

no(new)

no(new)

yes_icon

Customers cannot choose the incidents for advanced investigation; there is no guaranteed incident response time

yes_icon

Customers can choose the incidents for advanced investigation (within the purchased time limit); there is a guaranteed incident response time

*This tier is available for some regions only and may be unavailable for purchase by new customers. Contact your Kaspersky Managed Detection and Response solution provider for details about the commercial license tiers available to you.

**Kaspersky Managed Detection and Response solution ensures processing of three requests per week in accordance with performance targets of the solution delivery. The number of requests processed in accordance with performance targets of the solution delivery is increased proportionally: for every 10,000 connected endpoints, the number of requests is increased by 1.

Page top