SlideShare una empresa de Scribd logo

Complete Endpoint protection

X
xband

McAfee Endpoint Protection Platform Strategy

Tecnología
1 de 33
Descargar para leer sin conexión
Complete Endpoint Protection Ahmed Sharaf – Managing Director, Xband Enterprises, Inc.
Malware Continues to Grow… 2 Source: McAfee Labs, 2013 Malware continues to grow and get more sophisticated… 0 2,000,000 4,000,000 6,000,000 8,000,000 10,000,000 12,000,000 Q1 2010 Q2 2010 Q3 2010 Q4 2010 Q1 2011 Q2 2011 Q3 2011 Q4 2011 Q1 2012 Q2 2012 Q3 2012 Q4 2012 Q1 2013 14,000,000 New Malware Samples 2012 new malware sample discoveries increased 50% over 2011 New malware samples grew 22% from Q4’12 to Q1‘13
Four Phases of an Attack 3 Example: Fake AV How the attacker first crosses path with target. First Contact Malicious Website Network Access Physical Access Unsolicited Message How the attacker gets code running first time on target machine. Local Execution Configuration Error Exploit Social Engineering How the attacker persists code on the system, to survive reboot, stay hidden, hide from user and security software. Establish Presence Persist on System Self-Preservation Download Malware Escalate Privilege The business logic, what the attacker wants to accomplish, steal passwords, bank fraud, purchase Fake AV. Malicious Activity Adware & Scareware Identity & Financial Fraud Propagation Bot Activities Tampering Malicious Website Exploit Persist on System Adware & Scareware
Removable Media Storage Laptop Desktop ATM’s Medical Devices Servers (Physical and Virtual) Databases Storage The Evolving Endpoint WORKSPACE FIXED FUNCTIONDATACENTER 4
Mobile Devices Systems Management Agent Traditional Architecture for Endpoint Security HIPS Agent Encryption DLP Agent Every SOLUTION has a CONSOLE Every CONSOLE requires a SERVER Every SERVER requires a OS and a DATABASE Every OS/DB requires PEOPLE, MAINTENANCE, PATCHING WHERE DOES IT END? 5
McAfee Endpoint Protection Platform Strategy 6 Complete endpoint security Cloud Application Database OS HW-Enhanced Security Information and Events Risk and Compliance Unified Security Operations Desktop Laptop Mobile Server Virtual Embedded DataCenter Desktop/Laptop Windows Only Blacklist Files Focus on Devices Static Device Policy Disparate, Disconnected Management COMPLETE ENDPOINT SECURITYFIRST-GENERATION
LOCAL EXECUTION ESTABLISH PRESENCE MALICIOUS ACTIVITYFIRST CONTACT 4 Phase Protection Methods McAfee® SiteAdvisor® Website Filtering McAfee Device Control Physical File Transfer McAfee Desktop Firewall McAfee Desktop Firewall McAfee Web Gateway and McAfee Email Gateway Web Filtering Email Filtering McAfee VirusScan® Enterprise On-Access Scanning File Scanning Write Blocking McAfee Database Activity Monitor Database Vulnerability Blocking McAfee VirusScan® Enterprise Rootkit Detection McAfee Host Intrusion Prevention Buffer Overflow Prevention Behavioral Prevention McAfee Application Control for Servers or Desktops Install and Execution Prevention Change Protection 7
Intel Security - A Proven Leader in Endpoint Security 8 Gartner Magic Quadrant Leader for 7 straight years! • Placed furthest on Completeness of Vision axis • Superior Manageability with ePO • Next Generation Endpoint Platform • Security Connected Vision attainable for customers • Advancing Protection Rankings • Comprehensive Solution • Strength of Intel / McAfee Together Gartner Disclaimer This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from http://www.gartner.com/technology/reprints.do?id=1-26F1285&ct=141223&st=sb. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
Complete Endpoint Protection—Enterprise Complete Simplicity • Unified, open security management for all endpoints • One solution for PC, Mac, Linux, or virtual • Turnkey simple installation in minutes • Use less resources to manage security with single console Complete Performance • Security optimized for high performance across all platforms • Dynamic whitelisting offers a no -scanning, small desktop footprint • Real-time visibility reducing time to reaction by 10 to 1000 times • Smart scanning technology optimizes CPU and memory usage Complete Protection • The market’s broadest set of security technologies • Proven leader in blocking exploits, evasion and stealthy threats • Application Whitelisting shown to provide 100% protection 9 Endpoint Protection Windows & Unix AV  Mac & Linux AV  Endpoint Firewall  Host Intrusion Prevention  Application Blocking  Application Control – Desktop  Web/Messaging Security SiteAdvisor with Web Filter  Anti-malware Email  Data Protection Device Control  Management & Deployment ePO 
Complete Endpoint Protection—Business Complete Simplicity • Unified, open security management for all endpoints • One solution for PC, Mac, Linux, or virtual • Turnkey simple installation in minutes • Use less resources to manage security with single console Complete Performance • Security optimized for ultimate performance on any platform • Real-time visibility reducing time to reaction 10x to 1000x • Smart scanning technology optimizes CPU and memory usage Complete Protection • The market’s broadest set of security technologies • Proven leader in blocking exploits and stealthy threats 10 Endpoint Protection Windows & Unix AV  Mac & Linux AV  Storage Server AV  SharePoint AV  Endpoint Firewall  Intrusion Prevention  Application Blocking  Web/Messaging Security Antimalware Email  SiteAdvisor with Web Filtering  Data Protection Device Control  Drive Encryption  File & Removable Media Protection  Management & Deployment ePO 
Complete Protection—Proven by Independent Testing 11 Collection Missed Detected Total Detected (%) Missed (%) Anti-Malware Desktop 0 4634 4634 100.000 0.000 Spyware 0 1773 1773 100.000 0.000 Trojan 0 910 910 100.000 0.000 Overall 0 7317 7317 100.000 0.000 VSE On-Access, HIPS, and Dynamic Application Control Source: Westcoast Labs 2012 Exploit Evasion Combined McAfee 97% 100% 99% Symantec 91% 100% 96% Sophos 88% 97% 93% Kaspersky 92% 92% 92% F-Secure 79% 88% 84% Microsoft 65% 100% 83% AVG 76% 88% 82% ESET 71% 92% 82% Trend 73% 53% 63% Norman 47% 75% 61% Panda 41% 75% 58% Combined Detection Rates Source: NSS Labs 2013
• Complete Data Protection • Encryption • Native Encryption Management • DLP: Endpoint and Network Data Protection Broad Solution Coverage for Enterprise Problems 12 • Data Center Suites • Application Control for Servers • MOVE (McAfee Optimized for Virtual Environments) • Database Security Server Protection • Policy Auditor • Risk Analytics Risk Management • ePO Deep Command • ePO Cloud Security Management
For More Information: www.McAfee.com/endpoint On The Web Third Party Reviews Whitepapers and Solution Briefs Four Phases Video www.mcafee.com/endpoint 13
#1 in Exploit and Evasion Protection. Complete Protection Complete Performance, Protection, Simplicity 14 Dynamic Whitelisting, Smart Scanning, Dynamic Risk Assessment. Complete Performance McAfee leads in Management, Scalability and Reaction time. Complete Simplicity
ePolicy Orchestrator McAfee ePolicy Orchestrator (McAfee ePO) Security Management Platform for unified management of endpoint, network, and data security. • End-to-end visibility • An open, extensible architecture • Proven efficiencies 16 • Personalized Command Center • Drag-and-Drop Dashboards and Actionable Reports • Role-based Access Control • Powerful Workflows • Enterprise-ready • Extensible Framework Complete Management
McAfee Application Control for Desktop 17 McAfee Application Control software provides complete protection from unwanted applications and code—blocking threats without requiring signature updates. • Protect against zero-day and APTs without signature updates • Strengthen security and lower ownership costs with dynamic whitelisting • Automatically accept new software added through your authorized processes • Provide flexibility to desktop users by optionally allowing them to approve new applications • Block known and unknown threats • Use whitelisting to only allow approved applications to run • Integrates with McAfee ePO console for centralized IT management • Easily protect unsupported legacy systems, such as Microsoft Windows NT and 2000 Complete Endpoint Security
McAfee Data Center Suites 18 McAfee Data Center Suites provide complete protection for physical and virtualized server—superior threat blocking with minimal signature-based scans. • Low overhead, increased security for demanding server environments • Use whitelisting to only allow approved applications to run, denies malware • Protect against zero-day and APTs without signature updates • Strengthen security and lower ownership costs with dynamic whitelisting • Integrates with GTI to classify binaries as Good, Bad and Unknown • Integrates with McAfee ePO console for centralized IT management • Integrates with VMware, Microsoft HyperV and Citrix • Easily protect unsupported legacy systems, such as Microsoft Windows NT and 2000 McAfee Datacenter Security Suite for Server McAfee Virus Scan Enterprise – Windows and Linux  McAfee Application Control – Server  McAfee MOVE – Virtual Desktop Infrastructure  McAfee ePO  Complete Endpoint Security
Performance 19 McAfee application control = low performance impact 50% 60% 40% 30% 20% 10% Endpoint Resource Usage (for illustration only) Utilization 70% 80% 90% 100% McAfee App Control AV + HIPs
McAfee VirusScan Enterprise 20 McAfee VirusScan Enterprise proactively stops and removes threats, extends coverage for new security risks, and reduces the cost of managing responses. • Protect your files from viruses, worms, rootkits, Trojans, and other threats • Proactive protection against new and unknown buffer-overflow exploits that target vulnerabilities in Microsoft applications • Easily configure policies to manage and remove quarantined items • Supports users who are using both Microsoft Outlook and Lotus Notes • Supports Windows desktop OS (2000, XP, Vista, 7, 8) and Windows Server OS (2000, 2003, 2008, 2012) Exploit Evasion Combined McAfee 97% 100% 99% Symantec 91% 100% 96% Sophos 88% 97% 93% Kaspersky 92% 92% 92% F-Secure 79% 88% 84% Microsoft 65% 100% 83% AVG 76% 88% 82% ESET 71% 92% 82% Trend 73% 53% 63% Norman 47% 75% 61% Panda 41% 75% 58% Combined Detection Rates NSS Labs Protection & Evasion Test 2013: (VSE/HIPS/SAE) • Unbeatable malware detection and removal • Proactive protection from zero-day attacks • Integrates with McAfee GTI for real-time defense • Managed by ePO for deployment, configuration, enforcement and reporting • Optimized for fast performance and educed system impact Complete Endpoint Security
McAfee Host IPS 21 McAfee Host Intrusion Prevention for Desktop delivers unprecedented levels of protection from known and unknown zero-day threats by combining signature and behavioral intrusion prevention system (IPS). • Enforce the broadest IPS and zero-day threat protection coverage across all levels: network, application, and system execution • Advanced threat protection through dynamic, stateful desktop firewall • Single, unified management by ePO • Patch endpoints less frequently and with less urgency • Location aware policies provide specific protection based on location • Behavioral Analysis - zero-day attack protection • Mitigates patch deployment urgency • Ensure applications only perform legal operation • Vulnerability shielding capabilities for up to 100% MS vulnerability coverage Complete Endpoint Security
McAfee Endpoint Encryption 22 McAfee Endpoint Encryption solutions use industry-leading encryption algorithms and offers multiple layers of data protection to transparently secure a broader scope of confidential information. • Drive and file/folder encryption for Microsoft Windows PCs or Mac OS X • Enables automatic, transparent encryption without hindering performance • Enhanced performance through support for Intel AES-NI technology • Remote out-of-band management with ePO Deep Command • Supports: Windows 8, 7, Vista, XP Server 2008, 2003; (32- and 64-bit) • Enforces strong access control with pre- boot authentication • Prevents unauthorized access to information on PCs, laptops, network servers, and removable media • Provides key-sharing mechanisms that allow users to share files securely • Centrally managed with ePO Complete Endpoint Security
McAfee Device Control 23 McAfee Device Control protects data from falling into the wrong hands via removable storage devices and media, such as USB drives, MP3 players, CDs, and DVDs. • Control how users copy or retrieve data • Supports USB drives, iPods, recordable CDs/DVDs, Bluetooth and infrared devices, imaging equipment, COM and LPT ports • Centrally define, deploy, manage, and update security policies and agents • Set device and data policies by user, group, or department. • Support compliance with detailed user- and device-level logging • Gather details such as device, time stamp, and data evidence for prompt and proper audits • Protect your business from data loss • Maintain control over your confidential data • Enable productivity while ensuring data protection • Centralize and simplify your security management • Prove compliance with less effort Complete Endpoint Security
McAfee VirusScan Enterprise for Storage 24 McAfee Enterprise VirusScan for Storage extends proven real-time threat protection to mission critical NAS environments. • McAfee’s proven, award-winning scanning technology has been extended to storage environments • Rely on always-on, up-to-date, real-time security • High availability ensures business continuity in the unlikely event of a product failure • Multi-vendor support saves time and IT overhead and eliminates the need for separate point products for each vendor • Deploy ePO to manage all of your new security solutions or leverage your current investment by adding VSE for Storage to your ePO infrastructure • Continuous protection for storage devices and their data • Cost-effective solution • Common security management with ePO • Supports: IBM StoreWize V7000 Unified System, IBM Sonas, • HP StorageWorks X9000 Network Storage Systems • Sun Storage 7000 Unified Storage Systems • Isilon Complete Endpoint Security
McAfee VirusScan Enterprise for Linux 25 McAfee VirusScan Enterprise for Linux delivers always-on, real- time anti-virus protection for Linux environments. Its unique, Linux- based on-access scanner constantly monitors the system for potential attacks. • Secure your enterprise with always-on protection • Heuristic scanning • Archive scanning • Cross-platform protection • Save time with automatic updates • Make management easy with McAfee ePolicy Orchestrator (ePO) • Deploy new kernels quickly and easily • Supports various Linux distributions • SuSE Linux 9, 10, 11 • Novell Open Enterprise Server 1, 2 • Red Hat Enterprise 4.x; 5.x; 6.x • CentOS 4.x, 5.x, 6.x • Fedora Core 10, 11, and 12 • Ubuntu 8.04, 9.04, 9.10, 10.04, 10.10, and 11.04 Complete Endpoint Security
McAfee SiteAdvisor Enterprise with Web Filtering 26 McAfee SiteAdvisor Enterprise rates website safety using comprehensive behavioral and web reputation tests. • Advanced anti-phishing and blocking capabilities • Websites are classified into 104 categories • Secure web browsing and content filtering for business users • GTI integration provides protection at a URL level instead of domain level • Supports IE, Firefox, Chrome browsers • Educate end users about the dangers of searching or surfing the Internet • Browse safely - color-coded rating system lets users know which websites are safe and which are risky improve productivity • Advanced customization to authorize or block websites based on overall site ratings or threat factors • Integrated URL & content filtering • Manage with ePO for deployment, configuration, and reporting Complete Endpoint Security
McAfee ePO Deep Command 27 McAfee ePO Deep Command provides secure and remote out-of-band security management access to PCs that may be powered off or disabled. • Utilizes Intel® vPro™ Active Management Technology (AMT) • Discovers Intel vPro-based PCs in infrastructure • Easily configure and provision Intel AMT from ePO console • Put protection in place ahead of threats, even if systems are powered off or using encryption • Ensure that powered-off and remote endpoints adhere to policies and configurations • Connect to the keyboard, video, and mouse (KVM) capabilities of supporting Intel® vPro™ systems • Securely extend the reach of remote remediation with IP-KVM functionality • Remotely remediate PCs when disabled • Conduct wake and patch • Access PCs at hardware level • Improve security to all PCs regardless of state • Remote out-of-band encryption management • Supports Intel Core i5 vPro or Core i7 vPro Complete Endpoint Security
McAfee Endpoint Protection for Mac 28 McAfee Endpoint Protection for Mac secures Apple endpoints with complete, advanced protection, including anti-virus, anti-spyware, firewall, and application protection. • Educate On-access scanning - always-on protection to stop threats before they execute • Scan archives & compressed files, Apple Mail messages & network volumes • System firewall stops network- based attacks from infecting the Mac • Application protection provides the ability to deny applications that are not approved to run • Managed by ePO • Adaptive Mode - Helps to learn network traffic and fine tuning the existing firewall policies • Regular mode - Ensures your firewall policies are enforced strictly • DNS Blocking - Blocks access to unwanted sites • Location awareness - Ensures correct policies are enforced based on the location from where you are connecting to the network. Complete Endpoint Security
McAfee Security for Email Servers 29 McAfee Security for Email Servers provides comprehensive content security for Microsoft Exchange and Lotus Domino servers. • Comprehensive inbound security against all email-borne threats • Integrated encryption and data loss prevention capabilities for compliance and policy enforcement • Security-as-a-Service (SaaS), on-premises, and integrated hybrid deployment options • Cloud-based computing provides virtually limitless capacity • Platforms supported: • Microsoft Exchange 2003, 2007, 2010, 2013 • Lotus Domino 8.0, 8.5 • Windows Server 2003, 2008, 2012 • Linux (Domino 8.5) Server • Novell SUSE Linux Enterprise Server 10, 11 • Red Hat Enterprise Linux Complete Endpoint Security
McAfee Security for Microsoft SharePoint 30 McAfee Security for Microsoft SharePoint ensures that your corporate SharePoint deployment does not spread malware, store inappropriate content, or lead to data loss. • Prevent SharePoint from becoming a malware vector by blocking viruses, worms, Trojans, and other potentially unwanted programs • Centralized and local reporting via the McAfee ePO • Prevent data loss through flexible content filtering • Store quarantined documents locally and search the database by infection name, file name, and other parameters • Prevent inappropriate and unauthorized documents from being stored on your SharePoint server • Supported Platforms: • Microsoft SharePoint Server 2003, 2007, 2010 • Microsoft SharePoint Services 2.0, 3.0 • Microsoft Windows Server Complete Endpoint Security
McAfee Policy Auditor 31 McAfee Policy Auditor software automates manual audit processes and helps you report consistently and accurately against internal and external policies. • Unify management of policy audits and endpoint security • Run consolidated audits across both managed (agent-based) and unmanaged (agentless) systems • Report against key industry mandates and internal policies • Up-to-date data, powerful dashboards and reports, and built-in waiver management simplify every step • SCAP-FDCC validated • Validated by the National Institute of Standards and Technology (NIST) as conforming to the SCAP standard Supported operating systems. • Microsoft Windows XP, Vista, 7 • Windows Server 2000, 2003, 2008 • Red Hat Enterprise Linux 3.0,4.0, 5.0, 5.1 • MAC OS X 10.4, 10.5 • HP-UX (RISC) 11iv1, 11iv2 • AIX (Power5, Power6) 5.3 TL8 SP5, 6.1 TL2 SP Complete Endpoint Security
McAfee Web Gateway 32 McAfee Web Gateway delivers comprehensive security for all aspects of web traffic, regardless of location or device. McAfee Web Gateway enables today’s web-centric enterprises with a powerful rules-based engine for optimal policy flexibility and control. • Protect Geo-location (McAfee GTI) • Web reputation (McAfee GTI) • Web filtering (McAfee GTI) • Dynamic categorization • File reputation (McAfee GTI) • SSL scanning • Media/file analysis • Data loss prevention • Signature-based antivirus • Proactive anti-malware • Common criteria EAL2+ and FIPS 140-2 Level 2-certified • Leader in Gartner Magic Quadrant, Web Gateway for four years running • Number one-rated antimalware solution on the market (AV-Test.org) Complete Endpoint Security
Product Resources (click on image to browse to web) 33

Recomendados

Crowdstrike .pptx
Crowdstrike .pptxCrowdstrike .pptx
Crowdstrike .pptxuthayakumar174828
 
Building Security Operation Center
Building Security Operation CenterBuilding Security Operation Center
Building Security Operation CenterS.E. CTS CERT-GOV-MD
 
Strategy considerations for building a security operations center
Strategy considerations for building a security operations centerStrategy considerations for building a security operations center
Strategy considerations for building a security operations centerCMR WORLD TECH
 
SIEM Architecture
SIEM ArchitectureSIEM Architecture
SIEM ArchitectureNishanth Kumar Pathi
 
Security Information and Event Management (SIEM)
Security Information and Event Management (SIEM)Security Information and Event Management (SIEM)
Security Information and Event Management (SIEM)k33a
 
IBM QRadar Security Intelligence Overview
IBM QRadar Security Intelligence OverviewIBM QRadar Security Intelligence Overview
IBM QRadar Security Intelligence OverviewCamilo Fandiño Gómez
 
Endpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEyeEndpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEyePrime Infoserv
 
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond AlertingProactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond AlertingCrowdStrike
 

Recomendados

Crowdstrike .pptx
Crowdstrike .pptxCrowdstrike .pptx
Crowdstrike .pptxuthayakumar174828
 
Building Security Operation Center
Building Security Operation CenterBuilding Security Operation Center
Building Security Operation CenterS.E. CTS CERT-GOV-MD
 
Strategy considerations for building a security operations center
Strategy considerations for building a security operations centerStrategy considerations for building a security operations center
Strategy considerations for building a security operations centerCMR WORLD TECH
 
SIEM Architecture
SIEM ArchitectureSIEM Architecture
SIEM ArchitectureNishanth Kumar Pathi
 
Security Information and Event Management (SIEM)
Security Information and Event Management (SIEM)Security Information and Event Management (SIEM)
Security Information and Event Management (SIEM)k33a
 
IBM QRadar Security Intelligence Overview
IBM QRadar Security Intelligence OverviewIBM QRadar Security Intelligence Overview
IBM QRadar Security Intelligence OverviewCamilo Fandiño Gómez
 
Endpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEyeEndpoint Detection & Response - FireEye
Endpoint Detection & Response - FireEyePrime Infoserv
 
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond AlertingProactive Threat Hunting: Game-Changing Endpoint Protection Beyond Alerting
Proactive Threat Hunting: Game-Changing Endpoint Protection Beyond AlertingCrowdStrike
 
Building a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS EnvironmentsBuilding a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS EnvironmentsShah Sheikh
 
Rothke secure360 building a security operations center (soc)
Rothke secure360 building a security operations center (soc)Rothke secure360 building a security operations center (soc)
Rothke secure360 building a security operations center (soc)Ben Rothke
 
SOC Architecture Workshop - Part 1
SOC Architecture Workshop - Part 1SOC Architecture Workshop - Part 1
SOC Architecture Workshop - Part 1Priyanka Aash
 
NIST CSF Overview
NIST CSF OverviewNIST CSF Overview
NIST CSF OverviewPriyanka Aash
 
Security operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتSecurity operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتReZa AdineH
 
Cyber Threat Hunting Workshop
Cyber Threat Hunting WorkshopCyber Threat Hunting Workshop
Cyber Threat Hunting WorkshopDigit Oktavianto
 
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)Iftikhar Ali Iqbal
 
Security operation center (SOC)
Security operation center (SOC)Security operation center (SOC)
Security operation center (SOC)Ahmed Ayman
 
Cybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesCybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesKrist Davood - Principal - CIO
 
Technology Overview - Symantec Endpoint Protection (SEP)
Technology Overview - Symantec Endpoint Protection (SEP)Technology Overview - Symantec Endpoint Protection (SEP)
Technology Overview - Symantec Endpoint Protection (SEP)Iftikhar Ali Iqbal
 
WHY SOC Services needed?
WHY SOC Services needed?WHY SOC Services needed?
WHY SOC Services needed?manoharparakh
 
Présentation ELK/SIEM et démo Wazuh
Présentation ELK/SIEM et démo WazuhPrésentation ELK/SIEM et démo Wazuh
Présentation ELK/SIEM et démo WazuhAurélie Henriot
 
IBM Security QRadar
IBM Security QRadar IBM Security QRadar
IBM Security QRadarVirginia Fernandez
 
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...Raffael Marty
 
DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)Shah Sheikh
 
INCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATIONINCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATIONSylvain Martinez
 
The Current ICS Threat Landscape
The Current ICS Threat LandscapeThe Current ICS Threat Landscape
The Current ICS Threat LandscapeDragos, Inc.
 
SIEM Primer:
SIEM Primer:SIEM Primer:
SIEM Primer:Anton Chuvakin
 
INCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTSINCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTSSylvain Martinez
 
Building an effective Information Security Roadmap
Building an effective Information Security RoadmapBuilding an effective Information Security Roadmap
Building an effective Information Security RoadmapElliott Franklin
 
MID_SIEM_Boubker_EN
MID_SIEM_Boubker_ENMID_SIEM_Boubker_EN
MID_SIEM_Boubker_ENVladyslav Radetsky
 
Scalar Security Roadshow April 2015
Scalar Security Roadshow April 2015Scalar Security Roadshow April 2015
Scalar Security Roadshow April 2015Scalar Decisions
 

Más contenido relacionado

La actualidad más candente

Building a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS EnvironmentsBuilding a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS EnvironmentsShah Sheikh
 
Rothke secure360 building a security operations center (soc)
Rothke secure360 building a security operations center (soc)Rothke secure360 building a security operations center (soc)
Rothke secure360 building a security operations center (soc)Ben Rothke
 
SOC Architecture Workshop - Part 1
SOC Architecture Workshop - Part 1SOC Architecture Workshop - Part 1
SOC Architecture Workshop - Part 1Priyanka Aash
 
Security operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتSecurity operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتReZa AdineH
 
Cyber Threat Hunting Workshop
Cyber Threat Hunting WorkshopCyber Threat Hunting Workshop
Cyber Threat Hunting WorkshopDigit Oktavianto
 
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)Iftikhar Ali Iqbal
 
Security operation center (SOC)
Security operation center (SOC)Security operation center (SOC)
Security operation center (SOC)Ahmed Ayman
 
Technology Overview - Symantec Endpoint Protection (SEP)
Technology Overview - Symantec Endpoint Protection (SEP)Technology Overview - Symantec Endpoint Protection (SEP)
Technology Overview - Symantec Endpoint Protection (SEP)Iftikhar Ali Iqbal
 
WHY SOC Services needed?
WHY SOC Services needed?WHY SOC Services needed?
WHY SOC Services needed?manoharparakh
 
Présentation ELK/SIEM et démo Wazuh
Présentation ELK/SIEM et démo WazuhPrésentation ELK/SIEM et démo Wazuh
Présentation ELK/SIEM et démo WazuhAurélie Henriot
 
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...Raffael Marty
 
DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)Shah Sheikh
 
INCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATIONINCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATIONSylvain Martinez
 
The Current ICS Threat Landscape
The Current ICS Threat LandscapeThe Current ICS Threat Landscape
The Current ICS Threat LandscapeDragos, Inc.
 
INCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTSINCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTSSylvain Martinez
 
Building an effective Information Security Roadmap
Building an effective Information Security RoadmapBuilding an effective Information Security Roadmap
Building an effective Information Security RoadmapElliott Franklin
 

La actualidad más candente (20)

Building a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS EnvironmentsBuilding a Cyber Security Operations Center for SCADA/ICS Environments
Building a Cyber Security Operations Center for SCADA/ICS Environments
 
Rothke secure360 building a security operations center (soc)
Rothke secure360 building a security operations center (soc)Rothke secure360 building a security operations center (soc)
Rothke secure360 building a security operations center (soc)
 
SOC Architecture Workshop - Part 1
SOC Architecture Workshop - Part 1SOC Architecture Workshop - Part 1
SOC Architecture Workshop - Part 1
 
NIST CSF Overview
NIST CSF OverviewNIST CSF Overview
NIST CSF Overview
 
Security operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیتSecurity operations center-SOC Presentation-مرکز عملیات امنیت
Security operations center-SOC Presentation-مرکز عملیات امنیت
 
Cyber Threat Hunting Workshop
Cyber Threat Hunting WorkshopCyber Threat Hunting Workshop
Cyber Threat Hunting Workshop
 
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
McAfee - McAfee Active Response (MAR) - Endpoint Detection & Response (EDR)
 
Security operation center (SOC)
Security operation center (SOC)Security operation center (SOC)
Security operation center (SOC)
 
Cybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for ExecutivesCybersecurity Roadmap Development for Executives
Cybersecurity Roadmap Development for Executives
 
Technology Overview - Symantec Endpoint Protection (SEP)
Technology Overview - Symantec Endpoint Protection (SEP)Technology Overview - Symantec Endpoint Protection (SEP)
Technology Overview - Symantec Endpoint Protection (SEP)
 
WHY SOC Services needed?
WHY SOC Services needed?WHY SOC Services needed?
WHY SOC Services needed?
 
Présentation ELK/SIEM et démo Wazuh
Présentation ELK/SIEM et démo WazuhPrésentation ELK/SIEM et démo Wazuh
Présentation ELK/SIEM et démo Wazuh
 
IBM Security QRadar
IBM Security QRadar IBM Security QRadar
IBM Security QRadar
 
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
Extended Detection and Response (XDR) An Overhyped Product Category With Ulti...
 
DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)DTS Solution - Building a SOC (Security Operations Center)
DTS Solution - Building a SOC (Security Operations Center)
 
INCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATIONINCIDENT RESPONSE NIST IMPLEMENTATION
INCIDENT RESPONSE NIST IMPLEMENTATION
 
The Current ICS Threat Landscape
The Current ICS Threat LandscapeThe Current ICS Threat Landscape
The Current ICS Threat Landscape
 
SIEM Primer:
SIEM Primer:SIEM Primer:
SIEM Primer:
 
INCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTSINCIDENT RESPONSE CONCEPTS
INCIDENT RESPONSE CONCEPTS
 
Building an effective Information Security Roadmap
Building an effective Information Security RoadmapBuilding an effective Information Security Roadmap
Building an effective Information Security Roadmap
 

Similar a Complete Endpoint protection

Scalar Security Roadshow April 2015
Scalar Security Roadshow April 2015Scalar Security Roadshow April 2015
Scalar Security Roadshow April 2015Scalar Decisions
 
Cisco Security Presentation
Cisco Security PresentationCisco Security Presentation
Cisco Security PresentationSimplex
 
Kaspersky Kesb ep10 no_cm_v01a
Kaspersky Kesb ep10 no_cm_v01aKaspersky Kesb ep10 no_cm_v01a
Kaspersky Kesb ep10 no_cm_v01aIgor Pandzic
 
Presentatie McAfee: Optimale Endpoint Protection 26062015
Presentatie McAfee: Optimale Endpoint Protection 26062015Presentatie McAfee: Optimale Endpoint Protection 26062015
Presentatie McAfee: Optimale Endpoint Protection 26062015SLBdiensten
 
Data Center Server security
Data Center Server securityData Center Server security
Data Center Server securityxband
 
Redefining Endpoint Security
Redefining Endpoint SecurityRedefining Endpoint Security
Redefining Endpoint SecurityBurak DAYIOGLU
 
New VIPRE_DS_EndpointSecurity_2016
New VIPRE_DS_EndpointSecurity_2016 New VIPRE_DS_EndpointSecurity_2016
New VIPRE_DS_EndpointSecurity_2016 Cyd Isaak Francisco
 
A Closer Look at Isolation: Hype or Next Gen Security?
A Closer Look at Isolation: Hype or Next Gen Security?A Closer Look at Isolation: Hype or Next Gen Security?
A Closer Look at Isolation: Hype or Next Gen Security?MenloSecurity
 
Oliver Schuermann - Integrated Software in Networking - the Mystery of SDN
Oliver Schuermann - Integrated Software in Networking - the Mystery of SDNOliver Schuermann - Integrated Software in Networking - the Mystery of SDN
Oliver Schuermann - Integrated Software in Networking - the Mystery of SDNcentralohioissa
 
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Scalar Decisions
 
Securing Beyond the Cloud Generation
Securing Beyond the Cloud GenerationSecuring Beyond the Cloud Generation
Securing Beyond the Cloud GenerationForcepoint LLC
 
Cyber Security protection by MultiPoint Ltd.
Cyber Security protection by MultiPoint Ltd.Cyber Security protection by MultiPoint Ltd.
Cyber Security protection by MultiPoint Ltd.Ricardo Resnik
 
Comparison Review Forticlient x Kaspersky.pdf
Comparison Review Forticlient x Kaspersky.pdfComparison Review Forticlient x Kaspersky.pdf
Comparison Review Forticlient x Kaspersky.pdfImamBahrudin5
 
Sophos Day Belgium - What's cooking in Sophos' Network Security Group?
Sophos Day Belgium - What's cooking in Sophos' Network Security Group?Sophos Day Belgium - What's cooking in Sophos' Network Security Group?
Sophos Day Belgium - What's cooking in Sophos' Network Security Group?Sophos Benelux
 
HCL BigFix - DNUG Stammtisch Salzburg
HCL BigFix - DNUG Stammtisch SalzburgHCL BigFix - DNUG Stammtisch Salzburg
HCL BigFix - DNUG Stammtisch SalzburgDNUG e.V.
 

Similar a Complete Endpoint protection (20)

MID_SIEM_Boubker_EN
MID_SIEM_Boubker_ENMID_SIEM_Boubker_EN
MID_SIEM_Boubker_EN
 
Scalar Security Roadshow April 2015
Scalar Security Roadshow April 2015Scalar Security Roadshow April 2015
Scalar Security Roadshow April 2015
 
Cisco Security Presentation
Cisco Security PresentationCisco Security Presentation
Cisco Security Presentation
 
XG Firewall
XG FirewallXG Firewall
XG Firewall
 
Kaspersky Kesb ep10 no_cm_v01a
Kaspersky Kesb ep10 no_cm_v01aKaspersky Kesb ep10 no_cm_v01a
Kaspersky Kesb ep10 no_cm_v01a
 
Presentatie McAfee: Optimale Endpoint Protection 26062015
Presentatie McAfee: Optimale Endpoint Protection 26062015Presentatie McAfee: Optimale Endpoint Protection 26062015
Presentatie McAfee: Optimale Endpoint Protection 26062015
 
Data Center Server security
Data Center Server securityData Center Server security
Data Center Server security
 
Redefining Endpoint Security
Redefining Endpoint SecurityRedefining Endpoint Security
Redefining Endpoint Security
 
New VIPRE_DS_EndpointSecurity_2016
New VIPRE_DS_EndpointSecurity_2016 New VIPRE_DS_EndpointSecurity_2016
New VIPRE_DS_EndpointSecurity_2016
 
A Closer Look at Isolation: Hype or Next Gen Security?
A Closer Look at Isolation: Hype or Next Gen Security?A Closer Look at Isolation: Hype or Next Gen Security?
A Closer Look at Isolation: Hype or Next Gen Security?
 
Oliver Schuermann - Integrated Software in Networking - the Mystery of SDN
Oliver Schuermann - Integrated Software in Networking - the Mystery of SDNOliver Schuermann - Integrated Software in Networking - the Mystery of SDN
Oliver Schuermann - Integrated Software in Networking - the Mystery of SDN
 
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
Disrupting the Malware Kill Chain - What's New from Palo Alto Networks.
 
Checkpoint Overview
Checkpoint OverviewCheckpoint Overview
Checkpoint Overview
 
Securing Beyond the Cloud Generation
Securing Beyond the Cloud GenerationSecuring Beyond the Cloud Generation
Securing Beyond the Cloud Generation
 
Cyber Security protection by MultiPoint Ltd.
Cyber Security protection by MultiPoint Ltd.Cyber Security protection by MultiPoint Ltd.
Cyber Security protection by MultiPoint Ltd.
 
Comparison Review Forticlient x Kaspersky.pdf
Comparison Review Forticlient x Kaspersky.pdfComparison Review Forticlient x Kaspersky.pdf
Comparison Review Forticlient x Kaspersky.pdf
 
Post Wannacry Update
Post Wannacry UpdatePost Wannacry Update
Post Wannacry Update
 
Sophos Day Belgium - What's cooking in Sophos' Network Security Group?
Sophos Day Belgium - What's cooking in Sophos' Network Security Group?Sophos Day Belgium - What's cooking in Sophos' Network Security Group?
Sophos Day Belgium - What's cooking in Sophos' Network Security Group?
 
Bezpečnost není jen antivirus
Bezpečnost není jen antivirusBezpečnost není jen antivirus
Bezpečnost není jen antivirus
 
HCL BigFix - DNUG Stammtisch Salzburg
HCL BigFix - DNUG Stammtisch SalzburgHCL BigFix - DNUG Stammtisch Salzburg
HCL BigFix - DNUG Stammtisch Salzburg
 

Más de xband

Talos threat-intelligence
Talos threat-intelligenceTalos threat-intelligence
Talos threat-intelligencexband
 
Preventing Data Breaches
Preventing Data BreachesPreventing Data Breaches
Preventing Data Breachesxband
 
Advanced Threat Defense Intel Security
Advanced Threat Defense Intel SecurityAdvanced Threat Defense Intel Security
Advanced Threat Defense Intel Securityxband
 
Security Transformation Services
Security Transformation ServicesSecurity Transformation Services
Security Transformation Servicesxband
 
Security Operations and Response
Security Operations and ResponseSecurity Operations and Response
Security Operations and Responsexband
 
Information Risk and Protection
Information Risk and ProtectionInformation Risk and Protection
Information Risk and Protectionxband
 
IBM Security Strategy Overview
IBM Security Strategy OverviewIBM Security Strategy Overview
IBM Security Strategy Overviewxband
 
API Connect Presentation
API Connect PresentationAPI Connect Presentation
API Connect Presentationxband
 
Verizon Data Breach Investigation Report
Verizon Data Breach Investigation ReportVerizon Data Breach Investigation Report
Verizon Data Breach Investigation Reportxband
 
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.netBig Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.netxband
 
Bridging the Data Security Gap
Bridging the Data Security GapBridging the Data Security Gap
Bridging the Data Security Gapxband
 
Hipaa Omnibus Final-Rule-eResource
Hipaa Omnibus Final-Rule-eResourceHipaa Omnibus Final-Rule-eResource
Hipaa Omnibus Final-Rule-eResourcexband
 
The Total Economic Impact™ Of Cisco Data Virtualization
The Total Economic Impact™ Of Cisco Data VirtualizationThe Total Economic Impact™ Of Cisco Data Virtualization
The Total Economic Impact™ Of Cisco Data Virtualizationxband
 
Assessing the Business Value of SDN Datacenter Security Solutions
Assessing the Business Value of SDN Datacenter Security SolutionsAssessing the Business Value of SDN Datacenter Security Solutions
Assessing the Business Value of SDN Datacenter Security Solutionsxband
 
Big Data, Little Data, and Everything in Between
Big Data, Little Data, and Everything in BetweenBig Data, Little Data, and Everything in Between
Big Data, Little Data, and Everything in Betweenxband
 
2015 cost of data breach study global analysis
2015 cost of data breach study global analysis2015 cost of data breach study global analysis
2015 cost of data breach study global analysisxband
 
Charles la trobe_college_learning_without_limits
Charles la trobe_college_learning_without_limitsCharles la trobe_college_learning_without_limits
Charles la trobe_college_learning_without_limitsxband
 
Fujitsu spain revolutionizing_public_administration
Fujitsu spain revolutionizing_public_administrationFujitsu spain revolutionizing_public_administration
Fujitsu spain revolutionizing_public_administrationxband
 
Iter supercomputing beyond_horizon
Iter supercomputing beyond_horizonIter supercomputing beyond_horizon
Iter supercomputing beyond_horizonxband
 
Ben gurion university_data_desert
Ben gurion university_data_desertBen gurion university_data_desert
Ben gurion university_data_desertxband
 

Más de xband (20)

Talos threat-intelligence
Talos threat-intelligenceTalos threat-intelligence
Talos threat-intelligence
 
Preventing Data Breaches
Preventing Data BreachesPreventing Data Breaches
Preventing Data Breaches
 
Advanced Threat Defense Intel Security
Advanced Threat Defense Intel SecurityAdvanced Threat Defense Intel Security
Advanced Threat Defense Intel Security
 
Security Transformation Services
Security Transformation ServicesSecurity Transformation Services
Security Transformation Services
 
Security Operations and Response
Security Operations and ResponseSecurity Operations and Response
Security Operations and Response
 
Information Risk and Protection
Information Risk and ProtectionInformation Risk and Protection
Information Risk and Protection
 
IBM Security Strategy Overview
IBM Security Strategy OverviewIBM Security Strategy Overview
IBM Security Strategy Overview
 
API Connect Presentation
API Connect PresentationAPI Connect Presentation
API Connect Presentation
 
Verizon Data Breach Investigation Report
Verizon Data Breach Investigation ReportVerizon Data Breach Investigation Report
Verizon Data Breach Investigation Report
 
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.netBig Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
Big Fix Q-Radar Ahmed Sharaf - EmbeddedSecurity.net
 
Bridging the Data Security Gap
Bridging the Data Security GapBridging the Data Security Gap
Bridging the Data Security Gap
 
Hipaa Omnibus Final-Rule-eResource
Hipaa Omnibus Final-Rule-eResourceHipaa Omnibus Final-Rule-eResource
Hipaa Omnibus Final-Rule-eResource
 
The Total Economic Impact™ Of Cisco Data Virtualization
The Total Economic Impact™ Of Cisco Data VirtualizationThe Total Economic Impact™ Of Cisco Data Virtualization
The Total Economic Impact™ Of Cisco Data Virtualization
 
Assessing the Business Value of SDN Datacenter Security Solutions
Assessing the Business Value of SDN Datacenter Security SolutionsAssessing the Business Value of SDN Datacenter Security Solutions
Assessing the Business Value of SDN Datacenter Security Solutions
 
Big Data, Little Data, and Everything in Between
Big Data, Little Data, and Everything in BetweenBig Data, Little Data, and Everything in Between
Big Data, Little Data, and Everything in Between
 
2015 cost of data breach study global analysis
2015 cost of data breach study global analysis2015 cost of data breach study global analysis
2015 cost of data breach study global analysis
 
Charles la trobe_college_learning_without_limits
Charles la trobe_college_learning_without_limitsCharles la trobe_college_learning_without_limits
Charles la trobe_college_learning_without_limits
 
Fujitsu spain revolutionizing_public_administration
Fujitsu spain revolutionizing_public_administrationFujitsu spain revolutionizing_public_administration
Fujitsu spain revolutionizing_public_administration
 
Iter supercomputing beyond_horizon
Iter supercomputing beyond_horizonIter supercomputing beyond_horizon
Iter supercomputing beyond_horizon
 
Ben gurion university_data_desert
Ben gurion university_data_desertBen gurion university_data_desert
Ben gurion university_data_desert
 

Último

[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfhans926745
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024The Digital Insurer
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)wesley chun
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century educationjfdjdjcjdnsjd
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processorsdebabhi2
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?Antenna Manufacturer Coco
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 

Último (20)

[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)Powerful Google developer tools for immediate impact! (2023-24 C)
Powerful Google developer tools for immediate impact! (2023-24 C)
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
presentation ICT roal in 21st century education
presentation ICT roal in 21st century educationpresentation ICT roal in 21st century education
presentation ICT roal in 21st century education
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 

Complete Endpoint protection

  • 1. Complete Endpoint Protection Ahmed Sharaf – Managing Director, Xband Enterprises, Inc.
  • 2. Malware Continues to Grow… 2 Source: McAfee Labs, 2013 Malware continues to grow and get more sophisticated… 0 2,000,000 4,000,000 6,000,000 8,000,000 10,000,000 12,000,000 Q1 2010 Q2 2010 Q3 2010 Q4 2010 Q1 2011 Q2 2011 Q3 2011 Q4 2011 Q1 2012 Q2 2012 Q3 2012 Q4 2012 Q1 2013 14,000,000 New Malware Samples 2012 new malware sample discoveries increased 50% over 2011 New malware samples grew 22% from Q4’12 to Q1‘13
  • 3. Four Phases of an Attack 3 Example: Fake AV How the attacker first crosses path with target. First Contact Malicious Website Network Access Physical Access Unsolicited Message How the attacker gets code running first time on target machine. Local Execution Configuration Error Exploit Social Engineering How the attacker persists code on the system, to survive reboot, stay hidden, hide from user and security software. Establish Presence Persist on System Self-Preservation Download Malware Escalate Privilege The business logic, what the attacker wants to accomplish, steal passwords, bank fraud, purchase Fake AV. Malicious Activity Adware & Scareware Identity & Financial Fraud Propagation Bot Activities Tampering Malicious Website Exploit Persist on System Adware & Scareware
  • 4. Removable Media Storage Laptop Desktop ATM’s Medical Devices Servers (Physical and Virtual) Databases Storage The Evolving Endpoint WORKSPACE FIXED FUNCTIONDATACENTER 4
  • 5. Mobile Devices Systems Management Agent Traditional Architecture for Endpoint Security HIPS Agent Encryption DLP Agent Every SOLUTION has a CONSOLE Every CONSOLE requires a SERVER Every SERVER requires a OS and a DATABASE Every OS/DB requires PEOPLE, MAINTENANCE, PATCHING WHERE DOES IT END? 5
  • 6. McAfee Endpoint Protection Platform Strategy 6 Complete endpoint security Cloud Application Database OS HW-Enhanced Security Information and Events Risk and Compliance Unified Security Operations Desktop Laptop Mobile Server Virtual Embedded DataCenter Desktop/Laptop Windows Only Blacklist Files Focus on Devices Static Device Policy Disparate, Disconnected Management COMPLETE ENDPOINT SECURITYFIRST-GENERATION
  • 7. LOCAL EXECUTION ESTABLISH PRESENCE MALICIOUS ACTIVITYFIRST CONTACT 4 Phase Protection Methods McAfee® SiteAdvisor® Website Filtering McAfee Device Control Physical File Transfer McAfee Desktop Firewall McAfee Desktop Firewall McAfee Web Gateway and McAfee Email Gateway Web Filtering Email Filtering McAfee VirusScan® Enterprise On-Access Scanning File Scanning Write Blocking McAfee Database Activity Monitor Database Vulnerability Blocking McAfee VirusScan® Enterprise Rootkit Detection McAfee Host Intrusion Prevention Buffer Overflow Prevention Behavioral Prevention McAfee Application Control for Servers or Desktops Install and Execution Prevention Change Protection 7
  • 8. Intel Security - A Proven Leader in Endpoint Security 8 Gartner Magic Quadrant Leader for 7 straight years! • Placed furthest on Completeness of Vision axis • Superior Manageability with ePO • Next Generation Endpoint Platform • Security Connected Vision attainable for customers • Advancing Protection Rankings • Comprehensive Solution • Strength of Intel / McAfee Together Gartner Disclaimer This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from http://www.gartner.com/technology/reprints.do?id=1-26F1285&ct=141223&st=sb. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
  • 9. Complete Endpoint Protection—Enterprise Complete Simplicity • Unified, open security management for all endpoints • One solution for PC, Mac, Linux, or virtual • Turnkey simple installation in minutes • Use less resources to manage security with single console Complete Performance • Security optimized for high performance across all platforms • Dynamic whitelisting offers a no -scanning, small desktop footprint • Real-time visibility reducing time to reaction by 10 to 1000 times • Smart scanning technology optimizes CPU and memory usage Complete Protection • The market’s broadest set of security technologies • Proven leader in blocking exploits, evasion and stealthy threats • Application Whitelisting shown to provide 100% protection 9 Endpoint Protection Windows & Unix AV  Mac & Linux AV  Endpoint Firewall  Host Intrusion Prevention  Application Blocking  Application Control – Desktop  Web/Messaging Security SiteAdvisor with Web Filter  Anti-malware Email  Data Protection Device Control  Management & Deployment ePO 
  • 10. Complete Endpoint Protection—Business Complete Simplicity • Unified, open security management for all endpoints • One solution for PC, Mac, Linux, or virtual • Turnkey simple installation in minutes • Use less resources to manage security with single console Complete Performance • Security optimized for ultimate performance on any platform • Real-time visibility reducing time to reaction 10x to 1000x • Smart scanning technology optimizes CPU and memory usage Complete Protection • The market’s broadest set of security technologies • Proven leader in blocking exploits and stealthy threats 10 Endpoint Protection Windows & Unix AV  Mac & Linux AV  Storage Server AV  SharePoint AV  Endpoint Firewall  Intrusion Prevention  Application Blocking  Web/Messaging Security Antimalware Email  SiteAdvisor with Web Filtering  Data Protection Device Control  Drive Encryption  File & Removable Media Protection  Management & Deployment ePO 
  • 11. Complete Protection—Proven by Independent Testing 11 Collection Missed Detected Total Detected (%) Missed (%) Anti-Malware Desktop 0 4634 4634 100.000 0.000 Spyware 0 1773 1773 100.000 0.000 Trojan 0 910 910 100.000 0.000 Overall 0 7317 7317 100.000 0.000 VSE On-Access, HIPS, and Dynamic Application Control Source: Westcoast Labs 2012 Exploit Evasion Combined McAfee 97% 100% 99% Symantec 91% 100% 96% Sophos 88% 97% 93% Kaspersky 92% 92% 92% F-Secure 79% 88% 84% Microsoft 65% 100% 83% AVG 76% 88% 82% ESET 71% 92% 82% Trend 73% 53% 63% Norman 47% 75% 61% Panda 41% 75% 58% Combined Detection Rates Source: NSS Labs 2013
  • 12. • Complete Data Protection • Encryption • Native Encryption Management • DLP: Endpoint and Network Data Protection Broad Solution Coverage for Enterprise Problems 12 • Data Center Suites • Application Control for Servers • MOVE (McAfee Optimized for Virtual Environments) • Database Security Server Protection • Policy Auditor • Risk Analytics Risk Management • ePO Deep Command • ePO Cloud Security Management
  • 13. For More Information: www.McAfee.com/endpoint On The Web Third Party Reviews Whitepapers and Solution Briefs Four Phases Video www.mcafee.com/endpoint 13
  • 14. #1 in Exploit and Evasion Protection. Complete Protection Complete Performance, Protection, Simplicity 14 Dynamic Whitelisting, Smart Scanning, Dynamic Risk Assessment. Complete Performance McAfee leads in Management, Scalability and Reaction time. Complete Simplicity
  • 15.
  • 16. ePolicy Orchestrator McAfee ePolicy Orchestrator (McAfee ePO) Security Management Platform for unified management of endpoint, network, and data security. • End-to-end visibility • An open, extensible architecture • Proven efficiencies 16 • Personalized Command Center • Drag-and-Drop Dashboards and Actionable Reports • Role-based Access Control • Powerful Workflows • Enterprise-ready • Extensible Framework Complete Management
  • 17. McAfee Application Control for Desktop 17 McAfee Application Control software provides complete protection from unwanted applications and code—blocking threats without requiring signature updates. • Protect against zero-day and APTs without signature updates • Strengthen security and lower ownership costs with dynamic whitelisting • Automatically accept new software added through your authorized processes • Provide flexibility to desktop users by optionally allowing them to approve new applications • Block known and unknown threats • Use whitelisting to only allow approved applications to run • Integrates with McAfee ePO console for centralized IT management • Easily protect unsupported legacy systems, such as Microsoft Windows NT and 2000 Complete Endpoint Security
  • 18. McAfee Data Center Suites 18 McAfee Data Center Suites provide complete protection for physical and virtualized server—superior threat blocking with minimal signature-based scans. • Low overhead, increased security for demanding server environments • Use whitelisting to only allow approved applications to run, denies malware • Protect against zero-day and APTs without signature updates • Strengthen security and lower ownership costs with dynamic whitelisting • Integrates with GTI to classify binaries as Good, Bad and Unknown • Integrates with McAfee ePO console for centralized IT management • Integrates with VMware, Microsoft HyperV and Citrix • Easily protect unsupported legacy systems, such as Microsoft Windows NT and 2000 McAfee Datacenter Security Suite for Server McAfee Virus Scan Enterprise – Windows and Linux  McAfee Application Control – Server  McAfee MOVE – Virtual Desktop Infrastructure  McAfee ePO  Complete Endpoint Security
  • 19. Performance 19 McAfee application control = low performance impact 50% 60% 40% 30% 20% 10% Endpoint Resource Usage (for illustration only) Utilization 70% 80% 90% 100% McAfee App Control AV + HIPs
  • 20. McAfee VirusScan Enterprise 20 McAfee VirusScan Enterprise proactively stops and removes threats, extends coverage for new security risks, and reduces the cost of managing responses. • Protect your files from viruses, worms, rootkits, Trojans, and other threats • Proactive protection against new and unknown buffer-overflow exploits that target vulnerabilities in Microsoft applications • Easily configure policies to manage and remove quarantined items • Supports users who are using both Microsoft Outlook and Lotus Notes • Supports Windows desktop OS (2000, XP, Vista, 7, 8) and Windows Server OS (2000, 2003, 2008, 2012) Exploit Evasion Combined McAfee 97% 100% 99% Symantec 91% 100% 96% Sophos 88% 97% 93% Kaspersky 92% 92% 92% F-Secure 79% 88% 84% Microsoft 65% 100% 83% AVG 76% 88% 82% ESET 71% 92% 82% Trend 73% 53% 63% Norman 47% 75% 61% Panda 41% 75% 58% Combined Detection Rates NSS Labs Protection & Evasion Test 2013: (VSE/HIPS/SAE) • Unbeatable malware detection and removal • Proactive protection from zero-day attacks • Integrates with McAfee GTI for real-time defense • Managed by ePO for deployment, configuration, enforcement and reporting • Optimized for fast performance and educed system impact Complete Endpoint Security
  • 21. McAfee Host IPS 21 McAfee Host Intrusion Prevention for Desktop delivers unprecedented levels of protection from known and unknown zero-day threats by combining signature and behavioral intrusion prevention system (IPS). • Enforce the broadest IPS and zero-day threat protection coverage across all levels: network, application, and system execution • Advanced threat protection through dynamic, stateful desktop firewall • Single, unified management by ePO • Patch endpoints less frequently and with less urgency • Location aware policies provide specific protection based on location • Behavioral Analysis - zero-day attack protection • Mitigates patch deployment urgency • Ensure applications only perform legal operation • Vulnerability shielding capabilities for up to 100% MS vulnerability coverage Complete Endpoint Security
  • 22. McAfee Endpoint Encryption 22 McAfee Endpoint Encryption solutions use industry-leading encryption algorithms and offers multiple layers of data protection to transparently secure a broader scope of confidential information. • Drive and file/folder encryption for Microsoft Windows PCs or Mac OS X • Enables automatic, transparent encryption without hindering performance • Enhanced performance through support for Intel AES-NI technology • Remote out-of-band management with ePO Deep Command • Supports: Windows 8, 7, Vista, XP Server 2008, 2003; (32- and 64-bit) • Enforces strong access control with pre- boot authentication • Prevents unauthorized access to information on PCs, laptops, network servers, and removable media • Provides key-sharing mechanisms that allow users to share files securely • Centrally managed with ePO Complete Endpoint Security
  • 23. McAfee Device Control 23 McAfee Device Control protects data from falling into the wrong hands via removable storage devices and media, such as USB drives, MP3 players, CDs, and DVDs. • Control how users copy or retrieve data • Supports USB drives, iPods, recordable CDs/DVDs, Bluetooth and infrared devices, imaging equipment, COM and LPT ports • Centrally define, deploy, manage, and update security policies and agents • Set device and data policies by user, group, or department. • Support compliance with detailed user- and device-level logging • Gather details such as device, time stamp, and data evidence for prompt and proper audits • Protect your business from data loss • Maintain control over your confidential data • Enable productivity while ensuring data protection • Centralize and simplify your security management • Prove compliance with less effort Complete Endpoint Security
  • 24. McAfee VirusScan Enterprise for Storage 24 McAfee Enterprise VirusScan for Storage extends proven real-time threat protection to mission critical NAS environments. • McAfee’s proven, award-winning scanning technology has been extended to storage environments • Rely on always-on, up-to-date, real-time security • High availability ensures business continuity in the unlikely event of a product failure • Multi-vendor support saves time and IT overhead and eliminates the need for separate point products for each vendor • Deploy ePO to manage all of your new security solutions or leverage your current investment by adding VSE for Storage to your ePO infrastructure • Continuous protection for storage devices and their data • Cost-effective solution • Common security management with ePO • Supports: IBM StoreWize V7000 Unified System, IBM Sonas, • HP StorageWorks X9000 Network Storage Systems • Sun Storage 7000 Unified Storage Systems • Isilon Complete Endpoint Security
  • 25. McAfee VirusScan Enterprise for Linux 25 McAfee VirusScan Enterprise for Linux delivers always-on, real- time anti-virus protection for Linux environments. Its unique, Linux- based on-access scanner constantly monitors the system for potential attacks. • Secure your enterprise with always-on protection • Heuristic scanning • Archive scanning • Cross-platform protection • Save time with automatic updates • Make management easy with McAfee ePolicy Orchestrator (ePO) • Deploy new kernels quickly and easily • Supports various Linux distributions • SuSE Linux 9, 10, 11 • Novell Open Enterprise Server 1, 2 • Red Hat Enterprise 4.x; 5.x; 6.x • CentOS 4.x, 5.x, 6.x • Fedora Core 10, 11, and 12 • Ubuntu 8.04, 9.04, 9.10, 10.04, 10.10, and 11.04 Complete Endpoint Security
  • 26. McAfee SiteAdvisor Enterprise with Web Filtering 26 McAfee SiteAdvisor Enterprise rates website safety using comprehensive behavioral and web reputation tests. • Advanced anti-phishing and blocking capabilities • Websites are classified into 104 categories • Secure web browsing and content filtering for business users • GTI integration provides protection at a URL level instead of domain level • Supports IE, Firefox, Chrome browsers • Educate end users about the dangers of searching or surfing the Internet • Browse safely - color-coded rating system lets users know which websites are safe and which are risky improve productivity • Advanced customization to authorize or block websites based on overall site ratings or threat factors • Integrated URL & content filtering • Manage with ePO for deployment, configuration, and reporting Complete Endpoint Security
  • 27. McAfee ePO Deep Command 27 McAfee ePO Deep Command provides secure and remote out-of-band security management access to PCs that may be powered off or disabled. • Utilizes Intel® vPro™ Active Management Technology (AMT) • Discovers Intel vPro-based PCs in infrastructure • Easily configure and provision Intel AMT from ePO console • Put protection in place ahead of threats, even if systems are powered off or using encryption • Ensure that powered-off and remote endpoints adhere to policies and configurations • Connect to the keyboard, video, and mouse (KVM) capabilities of supporting Intel® vPro™ systems • Securely extend the reach of remote remediation with IP-KVM functionality • Remotely remediate PCs when disabled • Conduct wake and patch • Access PCs at hardware level • Improve security to all PCs regardless of state • Remote out-of-band encryption management • Supports Intel Core i5 vPro or Core i7 vPro Complete Endpoint Security
  • 28. McAfee Endpoint Protection for Mac 28 McAfee Endpoint Protection for Mac secures Apple endpoints with complete, advanced protection, including anti-virus, anti-spyware, firewall, and application protection. • Educate On-access scanning - always-on protection to stop threats before they execute • Scan archives & compressed files, Apple Mail messages & network volumes • System firewall stops network- based attacks from infecting the Mac • Application protection provides the ability to deny applications that are not approved to run • Managed by ePO • Adaptive Mode - Helps to learn network traffic and fine tuning the existing firewall policies • Regular mode - Ensures your firewall policies are enforced strictly • DNS Blocking - Blocks access to unwanted sites • Location awareness - Ensures correct policies are enforced based on the location from where you are connecting to the network. Complete Endpoint Security
  • 29. McAfee Security for Email Servers 29 McAfee Security for Email Servers provides comprehensive content security for Microsoft Exchange and Lotus Domino servers. • Comprehensive inbound security against all email-borne threats • Integrated encryption and data loss prevention capabilities for compliance and policy enforcement • Security-as-a-Service (SaaS), on-premises, and integrated hybrid deployment options • Cloud-based computing provides virtually limitless capacity • Platforms supported: • Microsoft Exchange 2003, 2007, 2010, 2013 • Lotus Domino 8.0, 8.5 • Windows Server 2003, 2008, 2012 • Linux (Domino 8.5) Server • Novell SUSE Linux Enterprise Server 10, 11 • Red Hat Enterprise Linux Complete Endpoint Security
  • 30. McAfee Security for Microsoft SharePoint 30 McAfee Security for Microsoft SharePoint ensures that your corporate SharePoint deployment does not spread malware, store inappropriate content, or lead to data loss. • Prevent SharePoint from becoming a malware vector by blocking viruses, worms, Trojans, and other potentially unwanted programs • Centralized and local reporting via the McAfee ePO • Prevent data loss through flexible content filtering • Store quarantined documents locally and search the database by infection name, file name, and other parameters • Prevent inappropriate and unauthorized documents from being stored on your SharePoint server • Supported Platforms: • Microsoft SharePoint Server 2003, 2007, 2010 • Microsoft SharePoint Services 2.0, 3.0 • Microsoft Windows Server Complete Endpoint Security
  • 31. McAfee Policy Auditor 31 McAfee Policy Auditor software automates manual audit processes and helps you report consistently and accurately against internal and external policies. • Unify management of policy audits and endpoint security • Run consolidated audits across both managed (agent-based) and unmanaged (agentless) systems • Report against key industry mandates and internal policies • Up-to-date data, powerful dashboards and reports, and built-in waiver management simplify every step • SCAP-FDCC validated • Validated by the National Institute of Standards and Technology (NIST) as conforming to the SCAP standard Supported operating systems. • Microsoft Windows XP, Vista, 7 • Windows Server 2000, 2003, 2008 • Red Hat Enterprise Linux 3.0,4.0, 5.0, 5.1 • MAC OS X 10.4, 10.5 • HP-UX (RISC) 11iv1, 11iv2 • AIX (Power5, Power6) 5.3 TL8 SP5, 6.1 TL2 SP Complete Endpoint Security
  • 32. McAfee Web Gateway 32 McAfee Web Gateway delivers comprehensive security for all aspects of web traffic, regardless of location or device. McAfee Web Gateway enables today’s web-centric enterprises with a powerful rules-based engine for optimal policy flexibility and control. • Protect Geo-location (McAfee GTI) • Web reputation (McAfee GTI) • Web filtering (McAfee GTI) • Dynamic categorization • File reputation (McAfee GTI) • SSL scanning • Media/file analysis • Data loss prevention • Signature-based antivirus • Proactive anti-malware • Common criteria EAL2+ and FIPS 140-2 Level 2-certified • Leader in Gartner Magic Quadrant, Web Gateway for four years running • Number one-rated antimalware solution on the market (AV-Test.org) Complete Endpoint Security
  • 33. Product Resources (click on image to browse to web) 33