Technorati
Digg
Delicious
Reddit
Newsvine
StumbleUpon
Buzz
Blinklist
Mixx
GoogleSymantec Security Information Manager
| Purchasing Data Sheet (PDF) |
New Features
Symantec Security Information Manager 4.6 extends on Symantec's goal of automating the incident response process for customers through identifying critical threats, prioritizing the most critical issues, enabling effective response and supporting long term storage and analysis of this security data. Only by enabling the entire process, can security analyst teams achieve the goals of simultaneously raising security and lowering costs.
Attack Visualization
Display resources that are associated with an incident and the order of events that take place as the incident progresses.- Provides the analyst with a graphic display of the progress of an attack to facilitate quicker analysis.
Service Provider Architecture Support
Provide security incident management services to multiple business clients regardless of physical location.- Supports providing security management services to multiple divisions and/or geographies.
- Enables additional outsourcing resources to organizations looking for managed security services.
Centralized multiple customer incident presentation
Be able to monitor multiple service client activities from a central console view.- Ease of managing multiple client implementations from a central console.
Asset Grouping
Simplify organizing, searching and prioritizing specific assets or sets of assets.- Can leverage an enterprise's existing asset model to provide insights into which parts of the organization are affected by an incident and background around which resources are implicated.
New Agent-less Collectors
Nearly 20 new onboard collectors as well as an improved ability to easily add collectors in the field as required.- Broader scope of event collection with minimized impact on network operations.
- Faster, easier implementations.
Customizable Password Policy
Ability to customize password policies to match the password standards of your organization.- Simplifies alignment to privileged access policies in support of audit requirements
Flexible Event Archives
Supports writing to multiple archives with similar or different media, running reports across multiple archives, and setting rules on a per archive basis.- More options to utilize existing storage infrastructure investments.
- Provides flexibility to meet varying data retention requirements.
Hierarchical Incident Creation
Incidents created on disparate systems can be further correlated at a higher level resulting in a correlation collective.- Individual service provider clients gain additional insight to malicious activity through the collective correlated analysis of multiple security data sources.
HoneyNet Intelligence Tab
Provides up-to-date information from the Symantec DeepSight Threat Management System.- Additional risk mitigation by including analysis data of threats in the wild.
Additional Hardware Support Options
Pre-approved HP and Dell systems with minimum system requirements.- Provides options for customers that choose to select and support their own hardware.