Symantec Endpoint Protection 11.0 Partner Technical Update and Review Endpoint Security Group May 2008
Dec 24, 2015
Symantec Endpoint Protection 11.0Partner Technical Update and Review
Endpoint Security Group
May 2008
Optional Footer Information Here 2
Agenda
New features and improvements in SEP MR211
22
Renewal/Upgrading scenarios33
Recent SEP wins44
Upcoming changes to Endpoint Security Bundles
New Tools/Resources55
Q&A55
Optional Footer Information Here 3
SEP 11.0 Maintenance Release 2 (MR2) enhancements
Optional Footer Information Here 4
New features and improvements:New platform support
• Windows 2008 support (inc Server Core)SEP client only (SEPM support tentatively due with MR3)
• Windows Vista SP1 supportSEP client only
Optional Footer Information Here 5
New features and improvements:Resource usage / Footprint
• Resource usageSEPM > Use less RAM for Console, Server and Embedded DB
SEPM > Now less disk space
SEP > Now less disk space
Optional Footer Information Here 6
New features and improvements: Manager Installation
Optional Footer Information Here 7
New features and improvements: Manager Installation
Optional Footer Information Here 8
New features and improvements: Manager Installation
Optional Footer Information Here 9
New features and improvements: Console Homepage
Latest content versions now show on homepage for both Symantec’s public Liveupdate server and the local SEPM:
Optional Footer Information Here 10
New features and improvements: Content revision control via the console
Number of content revisions stored now configurable via the console.
If you choose ‘Simple’, this will set the stored content revisions to 3.
If you choose ‘Advanced, then:• Less than 100: 3 revisions• Between 100 and 500: 3 revisions• Between 500 and 1000: 10 revisions• More than 1000: 30 revisions
Optional Footer Information Here
New features and improvements: Delta content generation CPU util control
• The mdef25builder will now, by default, never use more than 50% of available CPU cycles.
• This is configurable by adding the following parameter to the conf.properties file:
– scm.delta.cpu.usage
• The advantage is less impact on the SEPM when deltas are being created
– Be aware though that this also means the process will take longer to complete the required delta generation task.
11
Optional Footer Information Here
New features and improvements: More responsive console experience
* Not installed by default, optional component on CD3 *
• The IIS 6.0 FastCGI extension improves the performance of the Home, Monitors, and Reports pages of the console.
• Is standard component to ship with Windows 2008.
• Documentation also provided on CD3 detailing setup steps.
• Symantec provides full support for the SEPM with the successful installation of the FastCGI extension.
12
Optional Footer Information Here
New features and improvements: Template AV/Antispyware policies
• Default (Balanced), High Security, High Performance.
• All differences documented in product admin manual.
13
Optional Footer Information Here
New features and improvements: Template Application Control policies
Further template policies added in MR2:
14
Optional Footer Information Here
New features and improvements: Automatic AV/Antispyware exclusions
• SEP 11.0, when released, already set automatic exclusions for MS Exchange 2003 and 2007.
• Now, MR2 will add automatic exclusions for:
– SEPM embedded database and transactional logs
– Active Directory database, transactional logs and working files• Following Microsoft best practice recommendations
15
Optional Footer Information Here
New features and improvements: Granular Device Control
• Devices can now be identified by any means
– Type, Brand, Model, Serial Number
• Tool provided on CD to verify Device IDs (DevViewer)
• Some Device ID examples:– SanDisk Micro Cruzer - USBSTOR\
DISK&VEN_SANDISK&PROD_CRUZER_MICRO&REV_2033\0002071406&0
– Apple iPod - USBSTOR\DiskApple___iPod____________1.62\4&3656B0&0
– Hitachi IDE Hard Drive - IDE\DISKHTS541060G9SA00_________________________MB3IC60H\4&14AA9DA8&0&0.0.0
16
Optional Footer Information Here
New features and improvements: Granular Device Control
17
Optional Footer Information Here
New features and improvements: Granular Device Control
18
Optional Footer Information Here
New features and improvements: Other updated included components
• Liveupdate Administrator 2.1.2 (MR2)
– Now supports Vista SP1 and Windows 2008
• Symantec Antivirus for Linux 1.0.4 (MR4)
• Network Access Control 11.0.2 (optional additional purchase)
– Now includes Microsoft NAP support and Peer-to-Peer enforcement
19
Optional Footer Information Here 20
Changes to Endpoint Security bundles
Optional Footer Information Here
Upcoming Changes to Endpoint Security Bundles
Multi-tier Protection – Small Business Edition
Multi-tier Protection
Mail Security for Exchange
Premium Antispam (for Groupware)
Endpoint Protection 11.x
SAV for Mac 10.2
Endpoint Security
Mail Security Groupware
8300 Appliance Software* AV/Antispam
Endpoint Protection11.x
Mail Security for Exchange
Mail Security for Domino
Mail Security Groupware
Endpoint Security
Mail Security Gateway
SAV for Windows Mobile
SAV for Mac 10.2
Premium Antispam (for Groupware)
NEW!
NEW!
NEW!
NEW!
NEW!
Targeted GA DatesNAM –June 2 LAM – June 2
EMEA – June 2APJ – July 7
* 8300 Virtual Edition
Optional Footer Information Here
Improved Symantec Multi-tier ProtectionSmall Business Edition Bundle
• What’s new?
– SAV for Macintosh 10.2
– New Bundle Name
– Premium Antispam (SPA)
• Improved Features and Benefits
– Symantec AntiVirus™ for Macintosh® automatically removes viruses and helps administrators manage all Macintosh OS X clients across the enterprise network
– Integrated mail protect against viruses, spam and security risks on the Microsoft Exchange Server
– Brightmail® based antispam technology
– 97% spam catch rate, 99.9999% accurate
Optional Footer Information Here
Improved Symantec Multi-tier Protection Bundle
• What’s new?
– SAV for Windows Mobile
– SMS 8300 Software Subscription (AV & AS)
– Premium Antispam (SPA)
• Improved Features and Benefits
– SAV for Windows Mobile enables secure mobile computing by providing comprehensive virus protection against malicious threats that target Windows® Mobile operating systems
– Award-winning mail security solution against viruses, spam and security risks at the gateway and mail servers
– Brightmail® based antispam technology
– 97% spam catch rate, 99.9999% accurate
Optional Footer Information Here 24
Best in Class Antispam Protection
24
Twyford, England
Munich, Germany
Alexandria, VA
Sydney, Australia
Redwood City, CA
Santa Monica, CA
Calgary, Canada
San Francisco, CA
Dublin, Ireland
Pune, IndiaTaipei, Taiwan
Tokyo, Japan
●97% Spam Catch Rate ●< 1 in 1,000,000 False Positives ●Automatic Updates Every 5-10 Minutes●Easy and Low Cost Administration
●97% Spam Catch Rate ●< 1 in 1,000,000 False Positives ●Automatic Updates Every 5-10 Minutes●Easy and Low Cost Administration
●800 Million Mailboxes Protected●Over 2.5 Million Decoy Accounts●12 Security Centers●Tens of Millions of Spam Processed Daily●24 x 365 Response
●800 Million Mailboxes Protected●Over 2.5 Million Decoy Accounts●12 Security Centers●Tens of Millions of Spam Processed Daily●24 x 365 Response
Global Intelligence NetworkGlobal Intelligence NetworkBrightmail Antispam Brightmail Antispam
Symantec Security ResponseSymantec Security Response
Symantec Email Security GroupSymantec Email Security Group
Optional Footer Information Here
Symantec Mail Security 8300
•Software Subscription/Virtual Appliance Included
OEM Server
VMWare*
App
OS
App
OS
App
OS
Virtual Appliances
Model 8380 8360 8340 8320
Segment 5000+ users 1000+ users Up to 1000 users Up to 100 users
•Physical ApplianceAppliance software Included
Appliance hardware add-on
SMS 8300 Virtual Edition is certified for production deployments on VMWare ESX servers.
* Not included in the SMP bundle
Optional Footer Information Here 26
Renewal/Upgrade Scenarios
Optional Footer Information Here 27
Upgrade SEP Customers to Multi-tier Protection
• Customer owns SEP
• 10,000 users
• Need of an antispam solution
P • MULTI-TIER PROTECTION 11.0.2 BNDL XGRD $186,700
$99,500
Renewal Revenue based on Band E, Essential maintenance
• ENDPOINT PROTECTION 11.0 ESSENTIAL $87,200
Vs. SEP Renewal
Deal Growth
Optional Footer Information Here
Competitive Upgrade to Multi-tier Protection
• Customer on Trend Micro NeatSuite™
• 10,000 users
• Wishes to switch to Multi-tier Protection
P• Competitive Upgrade to Multi-tier Protection
• SEP Consulting Services Opportunity
– SEP Design and Installation (2 weeks)
$240,100
$224,100$224,100
$16,000$16,000
Renewal Revenue based on Rewards Band E, Comp. Upgrade Essential maintenance
Optional Footer Information Here 29
Recent SEP 11.0 Wins
Optional Footer Information Here
Recent SEP 11.0 Wins
• Southeast Communications company
– Deployed SEP on more than 9,000 nodes
– Displacing Trend Micro Antivirus
– Company implementing advanced protection features (including Device and Application Control)
• “The administrative console in Symantec Endpoint Protection 11.0 allows us to give remote IT members access to the machines under their control. This takes a lot of the burden off of the centralized security group—they don't have to comb through logs and alerts anymore and enables us to quickly detect infections and to notify field offices before the intrusion becomes an epidemic.”
• Largest Medical Staffing Solutions Provider in the US
– Displaced McAfee• “I had the unique opportunity to compare Symantec’s product with McAfee’s, in terms of speed to
write new virus signatures and central management tools, and I thought the McAfee product paled in comparison...”
• Large Semiconductor corporation in Oregon
– Displaced Trend Micro Antivirus
• “Trend was good enough at finding the viruses, but it couldn’t do much about them once they were there…It didn’t have the remediation capabilities we needed…With Symantec Endpoint Protection, … I feel like our data is protected and that we’re not sending our sheep to the wolves, so to speak.”
Optional Footer Information Here
Partner Feedback
“Thanks for recommending MR2.! I installed it last Friday, and am very impressed with the improvements. We are again recommending Symantec to our customers.”
“The feedback I’ve gotten from the many customers I’ve worked with, and how pleased I am with MR2. ..Please do assure your team that they did all the right things with MR2!”
“The good news is…the MR2 beta build did actually fix the Checkpoint VPN client issue!...We did very well in the POC and it looks like we might be displacing McAfee on the account!!”
Optional Footer Information Here 32
Winner of ‘Influential Product of the Year Award’Winner of ‘Influential Product of the Year Award’
Winner of ‘Readers Choice Award”, December 2007 Winner of ‘Readers Choice Award”, December 2007
China Computer Business Information, December 2007
SEP 11.0 Awards
Optional Footer Information Here 33
New Resources & Tools
Optional Footer Information Here
Additional Tools & Resources
• SEP Installation & Migration Site
– http://www.symantec.com/business/support/endpointsecurity/migrate/
• New Installation & Deployment Flash Tour
– http://www.symantec.com/business/products/multimedia.jsp?pcid=2241&pvid=endpt_prot_1
• SEP vs. SAV CE Installation Guidance
– http://score.corp.symantec.com/products/246/337/3
• SCORE
• PartnerNet
34
Optional Footer Information Here 35
&ANSWERSQUESTIONS
Thank you!