Endpoint Protection

Hi,

Advanced persistent threats (APTs) pose serious challenges for organizations of all sizes. Challenges related to advanced persistent threats include cyber attacks that are designed to do anything from steal sensitive data for financial gain, corporate espionage, etc., to sabotage of critical infrastructure. These attacks are specifically targeted and are often carried out using sophisticated malware. The effectiveness of traditional file-based antivirus scanning technology is not by itself sufficient protection because a given malware associated with an APT will have extremely low prevalence, that is, will not be widely seen on the Internet. Traditional antivirus signature-based scanning is reactive in that a signature can only be written to detect a threat that has already been seen.

Symantec Endpoint Protection 12.1 (SEP 12.1) includes protection technologies that go beyond traditional antivirus scanning to provide effective protection of endpoints against the sophisticated malware used by APTs. This paper provides guidelines on how to ensure that SEP protection technologies are enabled and functioining in order to provide best protection for endpoints.

Additional Symantec Offerings to Protect against Advanced Persistent Threats

Symantec Endpoint Protection is just one important way to protect against advanced persistent threats. Symantec has additional offerings to help customers stay protected from advanced persistent threats. These include the following:

Symantec Critical System Protection

http://www.symantec.com/critical-system-protection

Leading organizations leverage Symantec Critical System Protection to secure their physical and virtual data centers. Delivering host-based intrusion detection (HIDS) and intrusion prevention (HIPS), Symantec provides a proven and comprehensive solution for server security. Achieve complete protection for VMware vSphere, stop zero-day and targeted attacks, and gain real-time visibility and control into compliance with Symantec Critical System Protection.

Symantec Web Gateway

http://www.symantec.com/web-gateway

Symantec Web Gateway protects organizations against multiple types of Web-borne malware and gives organizations the flexibility of deploying it as either a virtual appliance or on physical hardware. Powered by Insight, Symantec¡¦s innovative reputation-based malware filtering technology, Web Gateway relies on a global network of greater than 210 million systems to identify new threats before they cause disruption in organizations.

Symantec Messaging Gateway

http://www.symantec.com/messaging-gateway

Symantec Messaging Gateway enables organizations to secure their email and productivity infrastructure with effective and accurate real-time anti-spam and anti-malware protection, targeted attack protection, advanced content filtering, data loss prevention, and email encryption. Messaging Gateway is simple to administer and catches more than 99 percent of spam with less than one in a million false positives. Defend your email perimeter, and quickly respond to new messaging threats with this market leading messaging security solution.

Symantec Managed Security Services

http://www.symantec.com/managed-security-services

Organizations around the world rely on Symantec Managed Security Services to build and sustain a resilient incident management program. Symantec offers the global presence and scale to satisfy even the largest enterprises. Every month, Symantec Managed Security Services:

• Analyzes over 275 billion log entries
• Identifies over 40,000 potential security events
• Escalates over 4,000 validated, severe events

Symantec has been a leading provider of managed security services for over 10 years, and has been recognized by leading industry analysts and publications.