I think we are skirting around the issue here, really!
SEP is an Antivirus product, isn’t it? :-)
SEP (for that matter any AV) alone will NOT protect your network 100%.
Antivirus "is dead," says Brian Dye, Symantec's senior vice president for information security.
Read this:http://online.wsj.com/articles/SB10001424052702303417104579542140235850578
FireEye (or similar products) is exactly what you want to give that level of insight. Towards the end of the above article, there is mention of FireEye and the infamous Target security breach……… read and weep, that’s all we can do if you think about how foolish Target was even after being warned by Fireeye.
And of course, the old New York Times hack by Chinese, where Symantec had detected and quarantined only one of the 45 malicious files used by attackers over a three-month period.
Defence-in-depth is what going save us.....if at all that's possible....