Symantec Endpoint Protection 11.0 Partner Technical Update and Review Endpoint Security Group May 2008.

Symantec Endpoint Protection 11.0Partner Technical Update and Review

Endpoint Security Group

May 2008

Optional Footer Information Here 2

Agenda

New features and improvements in SEP MR211

22

Renewal/Upgrading scenarios33

Recent SEP wins44

Upcoming changes to Endpoint Security Bundles

New Tools/Resources55

Q&A55

Optional Footer Information Here 3

SEP 11.0 Maintenance Release 2 (MR2) enhancements

Optional Footer Information Here 4

New features and improvements:New platform support

• Windows 2008 support (inc Server Core)SEP client only (SEPM support tentatively due with MR3)

• Windows Vista SP1 supportSEP client only

Optional Footer Information Here 5

New features and improvements:Resource usage / Footprint

• Resource usageSEPM > Use less RAM for Console, Server and Embedded DB

SEPM > Now less disk space

SEP > Now less disk space

Optional Footer Information Here 6

New features and improvements: Manager Installation

Optional Footer Information Here 7

New features and improvements: Manager Installation

Optional Footer Information Here 8

New features and improvements: Manager Installation

Optional Footer Information Here 9

New features and improvements: Console Homepage

Latest content versions now show on homepage for both Symantec’s public Liveupdate server and the local SEPM:

Optional Footer Information Here 10

New features and improvements: Content revision control via the console

Number of content revisions stored now configurable via the console.

If you choose ‘Simple’, this will set the stored content revisions to 3.

If you choose ‘Advanced, then:• Less than 100: 3 revisions• Between 100 and 500: 3 revisions• Between 500 and 1000: 10 revisions• More than 1000: 30 revisions

Optional Footer Information Here

New features and improvements: Delta content generation CPU util control

• The mdef25builder will now, by default, never use more than 50% of available CPU cycles.

• This is configurable by adding the following parameter to the conf.properties file:

– scm.delta.cpu.usage

• The advantage is less impact on the SEPM when deltas are being created

– Be aware though that this also means the process will take longer to complete the required delta generation task.

11

Optional Footer Information Here

New features and improvements: More responsive console experience

* Not installed by default, optional component on CD3 *

• The IIS 6.0 FastCGI extension improves the performance of the Home, Monitors, and Reports pages of the console.

• Is standard component to ship with Windows 2008.

• Documentation also provided on CD3 detailing setup steps.

• Symantec provides full support for the SEPM with the successful installation of the FastCGI extension.

12

Optional Footer Information Here

New features and improvements: Template AV/Antispyware policies

• Default (Balanced), High Security, High Performance.

• All differences documented in product admin manual.

13

Optional Footer Information Here

New features and improvements: Template Application Control policies

Further template policies added in MR2:

14

Optional Footer Information Here

New features and improvements: Automatic AV/Antispyware exclusions

• SEP 11.0, when released, already set automatic exclusions for MS Exchange 2003 and 2007.

• Now, MR2 will add automatic exclusions for:

– SEPM embedded database and transactional logs

– Active Directory database, transactional logs and working files• Following Microsoft best practice recommendations

15

Optional Footer Information Here

New features and improvements: Granular Device Control

• Devices can now be identified by any means

– Type, Brand, Model, Serial Number

• Tool provided on CD to verify Device IDs (DevViewer)

• Some Device ID examples:– SanDisk Micro Cruzer - USBSTOR\

DISK&VEN_SANDISK&PROD_CRUZER_MICRO&REV_2033\0002071406&0

– Apple iPod - USBSTOR\DiskApple___iPod____________1.62\4&3656B0&0

– Hitachi IDE Hard Drive - IDE\DISKHTS541060G9SA00_________________________MB3IC60H\4&14AA9DA8&0&0.0.0

16

Optional Footer Information Here

New features and improvements: Granular Device Control

17

Optional Footer Information Here

New features and improvements: Granular Device Control

18

Optional Footer Information Here

New features and improvements: Other updated included components

• Liveupdate Administrator 2.1.2 (MR2)

– Now supports Vista SP1 and Windows 2008

• Symantec Antivirus for Linux 1.0.4 (MR4)

• Network Access Control 11.0.2 (optional additional purchase)

– Now includes Microsoft NAP support and Peer-to-Peer enforcement

19

Optional Footer Information Here 20

Changes to Endpoint Security bundles

Optional Footer Information Here

Upcoming Changes to Endpoint Security Bundles

Multi-tier Protection – Small Business Edition

Multi-tier Protection

Mail Security for Exchange

Premium Antispam (for Groupware)

Endpoint Protection 11.x

SAV for Mac 10.2

Endpoint Security

Mail Security Groupware

8300 Appliance Software* AV/Antispam

Endpoint Protection11.x

Mail Security for Exchange

Mail Security for Domino

Mail Security Groupware

Endpoint Security

Mail Security Gateway

SAV for Windows Mobile

SAV for Mac 10.2

Premium Antispam (for Groupware)

NEW!

NEW!

NEW!

NEW!

NEW!

Targeted GA DatesNAM –June 2 LAM – June 2

EMEA – June 2APJ – July 7

* 8300 Virtual Edition

Optional Footer Information Here

Improved Symantec Multi-tier ProtectionSmall Business Edition Bundle

• What’s new?

– SAV for Macintosh 10.2

– New Bundle Name

– Premium Antispam (SPA)

• Improved Features and Benefits

– Symantec AntiVirus™ for Macintosh® automatically removes viruses and helps administrators manage all Macintosh OS X clients across the enterprise network

– Integrated mail protect against viruses, spam and security risks on the Microsoft Exchange Server

– Brightmail® based antispam technology

– 97% spam catch rate, 99.9999% accurate

Optional Footer Information Here

Improved Symantec Multi-tier Protection Bundle

• What’s new?

– SAV for Windows Mobile

– SMS 8300 Software Subscription (AV & AS)

– Premium Antispam (SPA)

• Improved Features and Benefits

– SAV for Windows Mobile enables secure mobile computing by providing comprehensive virus protection against malicious threats that target Windows® Mobile operating systems

– Award-winning mail security solution against viruses, spam and security risks at the gateway and mail servers

– Brightmail® based antispam technology

– 97% spam catch rate, 99.9999% accurate

Optional Footer Information Here 24

Best in Class Antispam Protection

24

Twyford, England

Munich, Germany

Alexandria, VA

Sydney, Australia

Redwood City, CA

Santa Monica, CA

Calgary, Canada

San Francisco, CA

Dublin, Ireland

Pune, IndiaTaipei, Taiwan

Tokyo, Japan

●97% Spam Catch Rate ●< 1 in 1,000,000 False Positives ●Automatic Updates Every 5-10 Minutes●Easy and Low Cost Administration

●97% Spam Catch Rate ●< 1 in 1,000,000 False Positives ●Automatic Updates Every 5-10 Minutes●Easy and Low Cost Administration

●800 Million Mailboxes Protected●Over 2.5 Million Decoy Accounts●12 Security Centers●Tens of Millions of Spam Processed Daily●24 x 365 Response

●800 Million Mailboxes Protected●Over 2.5 Million Decoy Accounts●12 Security Centers●Tens of Millions of Spam Processed Daily●24 x 365 Response

Global Intelligence NetworkGlobal Intelligence NetworkBrightmail Antispam Brightmail Antispam

Symantec Security ResponseSymantec Security Response

Symantec Email Security GroupSymantec Email Security Group

Optional Footer Information Here

Symantec Mail Security 8300

•Software Subscription/Virtual Appliance Included

OEM Server

VMWare*

App

OS

App

OS

App

OS

Virtual Appliances

Model 8380 8360 8340 8320

Segment 5000+ users 1000+ users Up to 1000 users Up to 100 users

•Physical ApplianceAppliance software Included

Appliance hardware add-on

SMS 8300 Virtual Edition is certified for production deployments on VMWare ESX servers.

* Not included in the SMP bundle

Optional Footer Information Here 26

Renewal/Upgrade Scenarios

Optional Footer Information Here 27

Upgrade SEP Customers to Multi-tier Protection

• Customer owns SEP

• 10,000 users

• Need of an antispam solution

P • MULTI-TIER PROTECTION 11.0.2 BNDL XGRD $186,700

$99,500

Renewal Revenue based on Band E, Essential maintenance

• ENDPOINT PROTECTION 11.0 ESSENTIAL $87,200

Vs. SEP Renewal

Deal Growth

Optional Footer Information Here

Competitive Upgrade to Multi-tier Protection

• Customer on Trend Micro NeatSuite™

• 10,000 users

• Wishes to switch to Multi-tier Protection

P• Competitive Upgrade to Multi-tier Protection

• SEP Consulting Services Opportunity

– SEP Design and Installation (2 weeks)

$240,100

$224,100$224,100

$16,000$16,000

Renewal Revenue based on Rewards Band E, Comp. Upgrade Essential maintenance

Optional Footer Information Here 29

Recent SEP 11.0 Wins

Optional Footer Information Here

Recent SEP 11.0 Wins

• Southeast Communications company

– Deployed SEP on more than 9,000 nodes

– Displacing Trend Micro Antivirus

– Company implementing advanced protection features (including Device and Application Control)

• “The administrative console in Symantec Endpoint Protection 11.0 allows us to give remote IT members access to the machines under their control. This takes a lot of the burden off of the centralized security group—they don't have to comb through logs and alerts anymore and enables us to quickly detect infections and to notify field offices before the intrusion becomes an epidemic.”

• Largest Medical Staffing Solutions Provider in the US

– Displaced McAfee• “I had the unique opportunity to compare Symantec’s product with McAfee’s, in terms of speed to

write new virus signatures and central management tools, and I thought the McAfee product paled in comparison...”

• Large Semiconductor corporation in Oregon

– Displaced Trend Micro Antivirus

• “Trend was good enough at finding the viruses, but it couldn’t do much about them once they were there…It didn’t have the remediation capabilities we needed…With Symantec Endpoint Protection, … I feel like our data is protected and that we’re not sending our sheep to the wolves, so to speak.”

Optional Footer Information Here

Partner Feedback

“Thanks for recommending MR2.! I installed it last Friday, and am very impressed with the improvements. We are again recommending Symantec to our customers.”

“The feedback I’ve gotten from the many customers I’ve worked with, and how pleased I am with MR2. ..Please do assure your team that they did all the right things with MR2!”

“The good news is…the MR2 beta build did actually fix the Checkpoint VPN client issue!...We did very well in the POC and it looks like we might be displacing McAfee on the account!!”

Optional Footer Information Here 32

Winner of ‘Influential Product of the Year Award’Winner of ‘Influential Product of the Year Award’

Winner of ‘Readers Choice Award”, December 2007 Winner of ‘Readers Choice Award”, December 2007

China Computer Business Information, December 2007

SEP 11.0 Awards

Optional Footer Information Here 33

New Resources & Tools

Optional Footer Information Here

Additional Tools & Resources

• SEP Installation & Migration Site

– http://www.symantec.com/business/support/endpointsecurity/migrate/

• New Installation & Deployment Flash Tour

– http://www.symantec.com/business/products/multimedia.jsp?pcid=2241&pvid=endpt_prot_1

• SEP vs. SAV CE Installation Guidance

– http://score.corp.symantec.com/products/246/337/3

• SCORE

• PartnerNet

34

Optional Footer Information Here 35

&ANSWERSQUESTIONS

Thank you!