Video Screencast Help

SEPM statistics/metrics

Created: 03 May 2013 | 5 comments

Hi, I am looking to pull some specific SEPM metrics for our environment. Can someone assist as to the best place to get the following informaiton -

  • Number of worm outbreaks
  • Top 10 malware list
  • Top malware sources by geography that is detected/prevented
  • Number of E-mail virus events
  • Number of rootkits detected/prevented
  • Number of SEPM detections
  • Number of SEPM auto-prevented attacks
  • Number of SEPM quarantined files

Any help would be much appreciated.

Thanks

Operating Systems:

Comments 5 CommentsJump to latest comment

_Brian's picture

Check out the Reports section in the SEPM. You can set report types for Risk, NTP, etc. Those reports can be very helpful for what you need.

These links may also be helpful, although slightly older, they still apply:

https://www-secure.symantec.com/connect/articles/m...

https://www-secure.symantec.com/connect/articles/m...

https://www-secure.symantec.com/connect/articles/m...

Please click the "Mark as solution" link at bottom left on the post that best answers your question. This will benefit admins looking for a solution to the same problem.

m_green's picture

Many thanks guys...

Any more suggestions?

m_green's picture

Thanks for the above links guys, I was able to compile some very useful information using the above guides.

Can somone tell me whether it is possible to detect the source (geographically) of a threat that is prevented within SEP? Therefore the possibility of informing us where the threat is coming from (I appreciate that proxies may distort this information but any info would be a help).

Cheers

 

Rafeeq's picture

You need to use Risk Tracer for that. Here is the info related to that.

 

What is Risk Tracer?

 

http://www.symantec.com/business/support/index?page=content&id=TECH102539