Re: "Endpoint" security solutions?

[Vijay K <globevk () yahoo com>]

Just to add my 2 cents of advise, do look into the
techniques these engines run.

some products offer dual engines. The speed at which
they scan file system, boot space, other for string
matches (virus) memory product occupies everything
matters. 

Remember these solutions ideally are an overhead
meaning protecting against miscreant invasions than
running any productive applications in an ideal world.
Just ensure they dont slow down your system
drastically. Do check CPU load.

Solutions are offered both client side agent based and
agentless solutions.

I would suggest you to lay emphasis on role based
centrally managed security solutions that would allow
administrators to define groups, user priveleges,
alert settings accordingly especially in more than 500
employee organizations. Makes life easier if whole
thing is automated.

Hope the above helps ;)
Best Regards
Vijay Kakumanu



--- damien dinh <damiendinh () gmail com> wrote:

> You should also look into behavioral based end point
> security products like
> Cisco CSA, Intercept (bought by NAI awhile back i
> think?), etc...but can be
> administratively demanding if you are not familiar
> with these products.
> Just my .02
>
> Best!
>
> Damien Dinh, MS
>
> On 9/7/07, Vijay K <globevk () yahoo com> wrote:
> > For enterprise products you might want to check
> > EndForce and InfoExpress
> >
> > End point security is quite an area comprising
> several
> > components
> >
> > 1. Anti-Virus
> > 2. Trojans
> > 3. root kits
> > 4. Malware
> > 5. Security Patching O/S
> > 6. worms
> > 7. spyware and tracking cookies
> > 8. Browser hijacks
> > 9. Patch updates
> > 10. Hacks and firewalls
> > 11. Vulnerability and remediation
> >
> > and others if i missed out a few...
> >
> > Enterprise issues largely target device
> management,
> > secure patching, policy management, quarantine
> issues,
> > remediation methods and incident response
> techniques
> > Patch management companies such as altiris that
> you
> > mentioned do few tasks not everything. companies
> such
> > as bigfix, shavlik, symantec live state, novell
> > provide the infrastructure that an enterprise
> needs
> > for centrally managing IT and audit regulatory
> > compliance like sarbnes oxley.
> >
> > For vulnerability you may want to check qualys,
> eeye
> > and others
> >
> > Hope that helps
> > cheers
> > Vijay Kakumanu
> >
> >
> >
> >
> > --- Kelly Keeton <kellyrkeeton () gmail com> wrote:
> >
> > > you might check out IronMail and Borderware
> > >
> > > On 9/4/07, spencerforhire
> <spencerforhire () gmail com>
> > > wrote:
> > > > Hello,
> > > >
> > > > I'm looking for advice on endpoint security
> > > solutions which address
> > > > the security of intellectual property - e.g.
> > > monitoring and reporting
> > > > of suspicious removable storage and webmail
> > > activity.  Some of the
> > > > endpoint security solutions I've seen focus on
> > > antivirus and patch
> > > > compliance, but I would like some options that
> > > address suspicious
> > > > handling of corporate information.  The
> ability to
> > > centrally manage
> > > > endpoint agents is also important since I
> envision
> > > them being
> > > > dispersed across many physical locations.  I
> heard
> > > Altiris had a
> > > > product that might fit these requirements, but
> it
> > > was purchased by
> > > > Symantec and I'm not sure of the current
> status?
> > > > Thanks!
> > > >
> > > > Mark
> >
> >
> >
> >
> >      
____________________________________________________________________________________
> > Fussy? Opinionated? Impossible to please? Perfect.
>  Join Yahoo!'s user
> > panel and lay it on us.
http://surveylink.yahoo.com/gmrs/yahoo_panel_invite.asp?a=7
> >



      ____________________________________________________________________________________
Fussy? Opinionated? Impossible to please? Perfect.  Join Yahoo!'s user panel and lay it on us. 
http://surveylink.yahoo.com/gmrs/yahoo_panel_invite.asp?a=7