Endpoint Protection (EPP) is security software that protects individual endpoints against malware, exploits, and other threats. Modern EPP solutions combine signature-based detection, behavioral analysis, machine learning, and application control.
EPP is the evolution of the classic antivirus scanner. Typical features include real-time protection, web filtering, exploit prevention, device control (USB ports), and a central management console. The line between EPP and EDR is increasingly blurred: many vendors offer integrated platforms that combine prevention (EPP) and detection/response (EDR). For an ISMS, EPP is one of the fundamental technical protective measures.