I have been using Traps/Cortex XDR for the past four years for two separate companies. Overall the features and functionalities of Symantec endpoint protection is great and the product complies with it's SLA and delivers what it promises. The only problem which we encountered is related to agent as agent consumes memory and disk space and it is not lightweight. The implementation process is smooth and the project went as planned. Beside this, the solution is equipped with some great artificial intelligence and machine learning capabilities. The administration of Symantec is easy and it gives the complete controlling capabilities. Solution gives the complete visibility of the detected endpoint if any malware or hash file is detected. The product is embedded with great features like application controlling, intrusion prevention, antivirus solution and anti malware solution that protect overall assets of our organization.
The best part about this solution is that it provide security over every platform that is on premise, cloud, or whether the architecture is hybrid. I didn't dig deeper about that functionality at the time.Symantec endpoint protection is the best security solution for the protection of endpoint. More than once compliance checklist weasel-words this by saying "antivirus software is required.on all operating systems where anti-virus software is normally used".Ī recent experience with ClamAV scanning non-executable data files is that it turned up a lot of positives on PDFs that would generally go into the class of "false positives" because they were detecting some kind of macro functionality that's been used by hostile malware in the past. Compliance is all about proving that you're thorough and proving it in writing for the record, not about jumping through hoops that don't apply to your situation. Remember that for all compliance, there are always ways to document that you've handled the needs with an exception to the guidelines. 5% of the time it's about scanning non-Linux fileshares or file repositories.
I haven't run SEP on anything, but my inclination is to strenuously avoid "beyond" ClamAV out of your distro repos.ĩ5% of the time, antivirus on Linux is about unthinking compliance check-off.
0 kommentar(er)
