Hello,
Are you talking about hardening the SEP to increase security -
Check these Articles:
Hardening Symantec Endpoint Protection (SEP) with an Application and Device Control Policy to increase security
http://www.symantec.com/docs/TECH132337
How the Application and Device Control Hardening policy works
http://www.symantec.com/docs/TECH132307
SEP Application Control policy to protect executable file registry configuration
http://www.symantec.com/docs/TECH171301
How to protect systems with SEP from an autorun.inf that links to malware.
http://www.symantec.com/docs/TECH201440
Hope that helps!!