Symantec Reporting and Notifications
Good Afternoon Everyone,
I am new to this software and needing some insite on how everything will work. The software seems to be good at what it is supposed to be. I am a new hire at a fairly large company and hired as a Technical Security Analyst. I have a few questions if someone is able to help out on that would be great.
1- For out-of-date virus definitions, is there a way to only see those connected directly to our domain?
The reason for this question is most of the end users are in sales. They will hop on the VPN to get files, etc and hop off. I am not needing to capure this information right now. Also, we have a corporate office, plant, and warehouse. Could these also be split in the reporting?
2-What are some of the best reports and notifications to setup with this software?
I have set up a daily risk report to show me risk that have been detected, quaranteened, active, and deleted. I have also set up a notification for the same critiria for cat3 or above for risk. I have a weekly network compliance report and a weekly out-of-date definition report(which i hope to be able to cut out sales that vpn in)
I want to thank for anyones reply in advance. Hopefully be seeing you around here more offten responding once I get a hang of everything!