On and off premises technologies – Which
is best for you?
We don’t mind what you buy, as long as it is
YELLOW!
Agenda
On Premises or in the cloud? 2
Why Symantec?
Email Security
Web Security
Endpoint Security
Why Symantec?
• Comprehensive & flexible portfolio, covering both On-Premise and SaaS
• Widest view of threat landscape – Global Intelligence Network
• Brand Leadership in Security
• Hybrid solutions available
.cloud On-Premises
Low initial start up costs Physical and Virtual appliances
Reduced HW and SW requirement Wide range of features
Contractual SLAs Eliminates privacy concerns
4
The Probe Network
• Collects spam from all over the world • Redirects spam to Symantec for analysis
What It Does
• Provides early warning of spam attacks and threats • Helps track global sender reputation
Why It’s Important
• Global Coverage with visibility in all regions
• Statistical reach of over 300 million email accounts • Helps to ensure a 1 in 1 million false positive rate
How It’s Unique
Symantec Global Intelligence Network
Managed devices in 70+ countries
120 Million Threat/ Virus Submission Systems 40,000+ Sensors in 200+ Countries
> 10,000 Security Professionals
Vulnerability Database Fraud: Spam & Phishing Honeypot Network 25,000+ vulnerabilities in database2+ Million Probe Network Accounts
Virtual network of 8000+ IP addresses
• 55,000+ technologies from over 8000 vendors
• Capturing previously unseen threats and attack methods • Statistics on 1+ Billion email
messages a day • Geo-location capabilities on
servers and zombies
2B+ events logged daily Over 100,000 security alerts generated annually
On Premises or in the cloud? 6
Email Security.cloud
Choosing an Email Security solution
• Comprehensive & flexible portfolio, covering both On-Premise and SaaS
• Widest view of threat landscape - Global Intelligence Network
• Brand Leadership in Security – Gartner magic quadrant leader
• Industry leading AV, reputation and signature based technologies
.cloud On-Premises
Industry leading SLAs (spam and virus capture, service availability)
Highly configurable disposition options for spam, bulk & marketing mail
Internet level quarantine On prem quarantine with single sign-on
AV, AS, Image and Content control Integration with on-premises DLP No mandatory HW or SW requirements Self-service TLS, SPF, DKIM, SenderID Suitable for hosted email environments Real time LDAP integration
Skeptic for 0 hour malware detection Extended log retention
On Premises or in the cloud? 10
On premises Deployment Options: Inline or Tap
Inline
(Monitoring or Blocking)
Port Span/Tap
On premises Deployment Options: Proxy
12 On Premises or in the cloud?
Internet Firewall
Proxy
Clients Core Switch
On Premises Deployment Options: Inline + Proxy
Monitor
MGMT
LAN
WAN
Web Security.cloud
Choosing a Web Security solution
• Comprehensive & flexible portfolio, covering both On-Premise and SaaS
• Strongest Protection – Global Intelligence Network
• Brand Leadership in Security
.cloud On-Premises
Support for remote and roaming employees (with Smart connect agent)
Virtual and physical appliance options Policy engine with time / volume quota
system
Multiple deployment methods including transparent, tap and proxy modes
User and group level control and reporting options (with Smart connect or CSP)
Scan and control multiple protocols including FTP, IM, Peer-Peer
SSL inspection support
On Premises or in the cloud? 16
SEP SBE 2013
Choosing an Endpoint Protection solution
• Comprehensive & flexible portfolio, covering both On-Premise and SaaS
• Insight, SONAR and other market leading AV technologies
• Brand Leadership in Endpoint Security
18
Hybrid SEP 12.1
Can be deployed to remote users via email or installed via portal
Wide range of clients including Windows, MacOS and Linux
Focuses on core feature set for simplified management
Enterprise feature set including SNAC, Device control,
Push IT security policies (application control and endpoint firewall) out to unmanaged endpoints
Integrates with other Symantec products via Protection Centre
Cloud based management portal, can be accessed from any location
Support for virtual environments
On Premises or in the cloud? 20
Platform Indicators...
Cloud indicators On premises indicators
I want to reduce my HW and SW portfolio I already have a virtual environment which I want to populate
I want to focus my human resources on core business activities
I need to be able to configure many aspects of my solution in detail I have offices in (countries where we are
able to offer cloud services)
I have offices in (countries where we do not have cloud services)
My business has many separate internet gateways
My business has privacy concerns about cloud based services
We already use a cloud based service for.. We are looking to upgrade our existing Symantec on premises solution
Email Indicators...
Cloud indicators On premises indicators
I want a fire and forget solution I need an integrated DLP solution Everybody's spam is the same, I just want
it gone
I have advanced requirements around email disposition and compliance
workflow I have many email gateways in separate
geographic location
I have many TLS links / I need to be able to set up a TLS link quickly and easily
I need to ensure that email never bounces regardless of what happens to my internet connection
My company’s spam profile is different and I need to be able to “tune” the solution I am particularly concerned about targeted
Trojans / 0 hour malware
I need to be able to retain logs for extended periods of time
My users want to separate their spam, bulk and marketing emails
Web Indicators...
Cloud indicators On premises indicators
URL filtering is my primary concern Malware detection / prevention is my primary concern
I want to be able to enforce policy on my users regardless of their physical location
I need to know when a machine on my network becomes infected as part of a botnet
I have a highly distributed organisation with small offices in many locations
I need to integrate web scanning with my on premises Symantec DLP solution
Endpoint Indicators...
Cloud indicators On premises indicators
We allow users to access company systems from consumer laptops and desktops
We have a strong centralised policy for controlling devices and network access I want to be able to deploy to users by
sending emails
We need to be able to manage endpoint and users via their active directory groups We are using more cloud based services
(SFDC, O365, Google apps, etc) so users don’t commonly log in via the VPN
We have a mixed environment with many different operating systems
We have dispersed workforce in small offices with limited VPNs to the main base and / or no local IT resources
Data Centre Coverage
EMEA APJ NAM
Thank you!
Copyright © 2012 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.
This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.
On Premises or in the cloud? 26