Advanced Threat Protection

 View Only
Back to discussions
Expand all | Collapse all

NEW RELEASE: Introducing the New Roaming Module of Symantec Advanced Threat Protection

  • 1.  NEW RELEASE: Introducing the New Roaming Module of Symantec Advanced Threat Protection

    Posted Nov 09, 2016 10:29 AM

    Symantec releases a newer version of Symantec™ Advanced Threat Protection (ATP), which includes a brand new module- ATP: Roaming, and other significant features

     

    Overview

    Today’s advanced attacks hide themselves on legitimate websites, leverage new and unknown vulnerabilities to enter targeted organizations via HTTP or HTTPS encrypted traffic. These attacks are designed to evade typical network-based security approaches, allowing them to infiltrate the victim’s infrastructure where they can then compromise critical systems and data.

    A recent study showed that 86% of websites contain at least one serious vulnerability. Today, preventing threats is simply not enough. Attackers are moving faster. At some point, they will find their way through. While organizations are seeking for ways to secure their endpoint and network, roaming users could be another issue. 70% of organizations support BYOD, implying a great chance that advanced threats can infiltrate into endpoints while end users are browsing the internet outside of corporate network. When an advanced threat slips through, you need a comprehensive security solution that can quickly contain and remediate the breach. Symantec Advanced Threat Protection is the only solution that would allow you to uncover, prioritize, investigate, and remediate advanced threats across endpoint, network, email, and web traffic, all through a single management console.

     

    Key new features in the latest release

    • Advanced Threat Protection: Roaming- A brand new ATP module that protects roaming users against advanced threats and provides full visibility into your web traffic, including HTTP and HTTPS encrypted traffic. It protects users wherever they are browsing the internet, even when they are outside of the corporate network. Malicious events detected from ATP Roaming will be correlated with those detected from other ATP control points (endpoint, network, and email), allowing customers to prioritize and focus on what matters the most.

    • Public APIs and Integration with ServiceNow and Splunk- Customers often have existing security products for incident response and security monitoring. In this release, we include public APIs, so that customers can leverage the products they have already invested in to conduct investigations. Symantec Advanced Threat Protection is also now integrated with Splunk and ServiceNow, the two popular SIEM and workflow products, to facilitate out-of-the-box use of our APIs.

    • Dynamic Adversary Intelligence- A high-value feed of actionable intelligence data extracted from comprehensive investigations into targeted attacks. It automatically searches for known IOC, quickly identifying whether your organization is under a targeted attack, so that you can respond to targeted attacks more appropriately. (Learn More)
       

    For more information, visit: http://atp.symantec.com

    Resource:

    Symantec ATP Platform Datasheet

    Symantec Endpoint Detection and Response (ATP Endpoint) Datasheet

    Symantec ATP Network Datasheet

    Symantec ATP Roaming Datasheet

    Symantec ATP Email Datasheet

    Source: 

    SC magazine, 2015

    Bitglass BYOD Trends Report, 2016