SlideShare a Scribd company logo

Symantec control compliance suite

Symantec, profile picture
Symantec

The document summarizes new features in Symantec Control Compliance Suite version 10.5. Key updates include improved risk management through SCAP support for a shared view of IT risks and new workflow integration to manage people risks. The suite also provides a more holistic view of risk with out-of-box dashboard connectors. Additionally, it offers more comprehensive controls assessments through support for additional frameworks like PCI, FDCC, and OWASP.

Technology
1 of 13
Downloaded 133 times
1
2
3
4
5
6
7
8
9
10
11
12
13
Symantec Control Compliance Suite 10.5 February 3, 2011
80% of Organizations Lack Visibility into IT Risks Question: What Color is Your Information Risk Today? For 1-in-10, it takes For 2-in-10, it takes more than one day -to- one week to nine months to find find the answer the answer For 1-in-10, it takes between one For 6-in-10, it takes between week and three months three and nine months to to find the answer find the answer Source: IT Policy Compliance Group, 2011 N: 1,202 Symantec Control Compliance Suite 10.5 2
Why are so Many Organizations Flying Blind? Inadequate Controls Lack a Holistic View of Inability to Prioritize Assessments Risk and Report on Risk • Fail to standardize on • Diverse IT environments • Unable to identify controls frameworks • Decentralized data highest priority IT risks • Manual controls collection • Reports lack actionable mapping • Rationalizing data from data to drive resolution • Keeping up with multiple sources • Unable to report on key regulatory changes risks per stakeholder Symantec Control Compliance Suite 10.5 3
Symantec Control Compliance Suite TECHNICAL CONTROLS • Symantec™ Control Compliance Suite Standards Manager • Symantec™ Control Compliance Suite Vulnerability Manager REPORT REMEDIATE POLICY PROCEDURAL CONTROLS • Symantec™ Control • Symantec™ • Symantec™ Control • Symantec™ Control Compliance Suite ServiceDesk 7.0 Compliance Suite Compliance Suite EVIDENCE (Infrastructure) Policy Manager Response Assessment Manager ASSETS CONTROLS DATA CONTROLS • Symantec™ Data Loss Prevention Discover 3RD PARTY EVIDENCE • Symantec™ Control Compliance Suite (Infrastructure) Symantec Control Compliance Suite 10.5 4
Control Compliance Suite 10.5 – What’s New? Improved Risk Management Capabilities • SCAP support provides shared view of IT risks • New workflow integration helps manage people risks More Holistic View of IT Risk • Out-of-box dashboard connectors expand risk views More Comprehensive Controls Assessments • Support for PCI 2.0 and SCAP benchmarks • FDCC support for better desktop controls • OWASP support for better Web application controls Symantec Control Compliance Suite 10.5 5
SCAP Support Provides Shared View of IT Risks • Security Content Automation Protocol • Developed by National Institute of Standards and Technology (NIST) • Better visibility into IT infrastructure • Standard way to write security checks • Eliminates need to rationalize data from multiple sources • Easily downloadable file updates – scan based on latest standards • Common framework provides a shared view of IT risks for better prioritization and faster remediation Symantec Control Compliance Suite 10.5 6
Manage People Risk With Workflow Integration • New workflow integration with Symantec Data Loss Prevention • Target security awareness training at individuals in violation of data protection policy • New questionnaire summary pages – Overview of key security awareness risks – Drill down into more detail for remediation efforts Symantec Control Compliance Suite 10.5 7
Control Compliance Suite 10.5 – What’s New Improved Risk Management Capabilities • SCAP support provides shared view of IT risks • New workflow integration helps manage people risk More Holistic View of Risk • Out-of-box dashboard connectors expand risk views More Comprehensive Controls Assessments • Support for PCI 2.0 and SCAP benchmarks • FDCC support for better desktop controls • OWASP support for better Web application controls Symantec Control Compliance Suite 10.5 8
Out-of-Box Dashboard Connectors Expand Risk Views • Automatically collect data from CCS Response Assessment Manager • Populate pre-defined dashboard panels • Side by side view of risks for greater insights – e.g. – Data policy violations – Results of employee security awareness – Compliance posture of critical servers • Future releases to bring in data on – Critical vulnerabilities – Latest security threats – Real-time file integrity monitoring Symantec Control Compliance Suite 10.5 9
Control Compliance Suite 10.5 – What’s New Improved Risk Management Capabilities • SCAP support provides shared view of IT risks • New workflow integration helps manage people risk More Holistic View of Risk • Out-of-the-box dashboard connectors expand risk views More Comprehensive Controls Assessments • Support for PCI 2.0 and SCAP benchmarks • FDCC support for better desktop controls • OWASP support for better Web application controls Symantec Control Compliance Suite 10.5 10
CCS 10.5 FDCC Support for Better Desktop Controls • 85% of total reported security breaches can be traced to end user actions* • Built-in support for Federal Desktop Core Configuration (FDCC) • Common industry standard for US Federal government • Protects desktops against harmful configuration changes and vulnerabilities • Simplifies desktop security • Easily import monthly updates • Report on results in FDCC format *Michael Bednarczyk, Information Week Analytics Symantec Control Compliance Suite 10.5 11
OWASP Support for Better Web Application Controls • In 2009 there were 5,500+ unique vulnerabilities in Web applications alone* • Built-in support for Open Web Application Security Protocol • Technical standards for securing Web applications • Focuses on top 10 vulnerabilities • Automatically identify and remediate risks before they are exploited • Adopted by PCI Security Standards Council *Symantec Global Internet Security Threat Report Symantec Control Compliance Suite 10.5 12
Thank you! Copyright © 2011 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice. Symantec Control Compliance Suite 10.5 13

More Related Content

PPTX
IT GRC with Symantec
Arrow ECS UK
 
PDF
Control Compliance Suite 10
Symantec
 
PDF
Symantec Brightmail Gateway 9
Symantec
 
PDF
SPS Enterprise Family
Symantec
 
PDF
Symantec Control Compliance Suite 11, February 2012
Symantec
 
PPT
Symantec AntiSpam Complete Overview (PowerPoint)
webhostingguy
 
PDF
Altiris IT Management Suite 7
Symantec
 
PPTX
Secure Email Communications from Symantec
Arrow ECS UK
 
IT GRC with Symantec
Arrow ECS UK
 
Control Compliance Suite 10
Symantec
 
Symantec Brightmail Gateway 9
Symantec
 
SPS Enterprise Family
Symantec
 
Symantec Control Compliance Suite 11, February 2012
Symantec
 
Symantec AntiSpam Complete Overview (PowerPoint)
webhostingguy
 
Altiris IT Management Suite 7
Symantec
 
Secure Email Communications from Symantec
Arrow ECS UK
 

What's hot (20)

PDF
Software Vulnerabilities Risk Remediation
Bruce Hafner
 
PDF
Windows Host Access Management with CA Access Control
webhostingguy
 
PDF
Symantec Introduces New Security Solutions to Counter Advanced Persistent Thr...
Symantec
 
PDF
Symantec Endpoint Protection Enterprise Edition Best Practices Guidelines
Sree Harsha Boyapati
 
DOCX
Ambesh
Ambesh Sharma
 
PDF
RSA 2012 Virtualization Security February 2012
Symantec
 
PDF
KASPERSKY SECURITY CENTER IMPLEMENTATION
GS CHO
 
PDF
IBM InfoSphere Guardium overview
nazeer325
 
PDF
NIC2012 - System Center Endpoint Protection 2012
Nicolai Henriksen
 
PDF
BMC - Response to the SolarWinds Breach/Malware
Mike Rizzo
 
PDF
C90 Security Service
christoboshoff
 
PDF
Norman Patch and Remediation
KavlieBorge
 
PDF
Defence in Depth Architectural Decisions
Peter Rawsthorne
 
PPT
Guardium Presentation
tsteh
 
PDF
Evaluating Risks of Cloud Based Services
Symantec
 
PDF
IBM Infosphere Guardium - Database Security
ebuc
 
PPTX
DojoSec FISMA Presentation
danphilpott
 
PDF
The Business Case for Enterprise Endpoint Protection: Can You Afford Not To?
IBM Security
 
PPTX
Gartner technologies for Infosec 2014-2015
Samuel Kamuli
 
PDF
IBM Security Guardium Data Activity Monitor (Data Sheet-USEN)
Peter Tutty
 
Software Vulnerabilities Risk Remediation
Bruce Hafner
 
Windows Host Access Management with CA Access Control
webhostingguy
 
Symantec Introduces New Security Solutions to Counter Advanced Persistent Thr...
Symantec
 
Symantec Endpoint Protection Enterprise Edition Best Practices Guidelines
Sree Harsha Boyapati
 
Ambesh
Ambesh Sharma
 
RSA 2012 Virtualization Security February 2012
Symantec
 
KASPERSKY SECURITY CENTER IMPLEMENTATION
GS CHO
 
IBM InfoSphere Guardium overview
nazeer325
 
NIC2012 - System Center Endpoint Protection 2012
Nicolai Henriksen
 
BMC - Response to the SolarWinds Breach/Malware
Mike Rizzo
 
C90 Security Service
christoboshoff
 
Norman Patch and Remediation
KavlieBorge
 
Defence in Depth Architectural Decisions
Peter Rawsthorne
 
Guardium Presentation
tsteh
 
Evaluating Risks of Cloud Based Services
Symantec
 
IBM Infosphere Guardium - Database Security
ebuc
 
DojoSec FISMA Presentation
danphilpott
 
The Business Case for Enterprise Endpoint Protection: Can You Afford Not To?
IBM Security
 
Gartner technologies for Infosec 2014-2015
Samuel Kamuli
 
IBM Security Guardium Data Activity Monitor (Data Sheet-USEN)
Peter Tutty
 
Ad

Similar to Symantec control compliance suite (20)

PPTX
Introduction to Symantec Endpoint Management75.pptx
Arrow ECS UK
 
PPT
Lunch and Learn: June 29, 2010
prevalentnetworks
 
PPTX
Shedding Light on Smart Grid & Cyber Security
Tripwire
 
PDF
2012-12-12 Seminar McAfee Risk Management
Pinewood
 
PDF
Better security through IT operations
slighltyanon
 
PPTX
TalaTek Enterprise Compliance Management Solution
Baan
 
PDF
Slide Griffin - Practical Attacks and Mitigations
EnergySec
 
PDF
Dell Endpoint Systems Management Solutions
CTI Group
 
PPTX
Securing fintech - threats, challenges, best practices, ffiec, nist, and beyo...
Ulf Mattsson
 
PDF
Cyber security series administrative control breaches
Jim Kaplan CIA CFE
 
PDF
TrustedAgent GRC for Vulnerability Management
Tuan Phan
 
PPTX
Using a Network Model to Address SANS Critical Controls 10 and 11
Skybox Security
 
PPTX
Top 20 Security Controls for a More Secure Infrastructure
Infosec
 
PDF
Session 1: Windows 8 with Gerry Tessier
CTE Solutions Inc.
 
PPTX
How to Solve Your Top IT Security Reporting Challenges with AlienVault
AlienVault
 
PDF
DevSecOps: Taking a DevOps Approach to Security
Alert Logic
 
PDF
MID_SIEM_Boubker_EN
Vladyslav Radetsky
 
PDF
Managing Software Risk with CAST
CAST
 
PPTX
Institute of Internal Auditors Presentation 2014
Brian T. O'Hara CISA, CISM, CRISC, CCSP, CISSP
 
PDF
TrustedAgent GRC for Vulnerability Management and Continuous Monitoring
Tri Phan
 
Introduction to Symantec Endpoint Management75.pptx
Arrow ECS UK
 
Lunch and Learn: June 29, 2010
prevalentnetworks
 
Shedding Light on Smart Grid & Cyber Security
Tripwire
 
2012-12-12 Seminar McAfee Risk Management
Pinewood
 
Better security through IT operations
slighltyanon
 
TalaTek Enterprise Compliance Management Solution
Baan
 
Slide Griffin - Practical Attacks and Mitigations
EnergySec
 
Dell Endpoint Systems Management Solutions
CTI Group
 
Securing fintech - threats, challenges, best practices, ffiec, nist, and beyo...
Ulf Mattsson
 
Cyber security series administrative control breaches
Jim Kaplan CIA CFE
 
TrustedAgent GRC for Vulnerability Management
Tuan Phan
 
Using a Network Model to Address SANS Critical Controls 10 and 11
Skybox Security
 
Top 20 Security Controls for a More Secure Infrastructure
Infosec
 
Session 1: Windows 8 with Gerry Tessier
CTE Solutions Inc.
 
How to Solve Your Top IT Security Reporting Challenges with AlienVault
AlienVault
 
DevSecOps: Taking a DevOps Approach to Security
Alert Logic
 
MID_SIEM_Boubker_EN
Vladyslav Radetsky
 
Managing Software Risk with CAST
CAST
 
Institute of Internal Auditors Presentation 2014
Brian T. O'Hara CISA, CISM, CRISC, CCSP, CISSP
 
TrustedAgent GRC for Vulnerability Management and Continuous Monitoring
Tri Phan
 
Ad

More from Symantec (20)

PDF
Symantec Enterprise Security Products are now part of Broadcom
Symantec
 
PDF
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec
 
PDF
Symantec Webinar | National Cyber Security Awareness Month: Protect IT
Symantec
 
PDF
Symantec Webinar | National Cyber Security Awareness Month: Secure IT
Symantec
 
PDF
Symantec Webinar | National Cyber Security Awareness Month - Own IT
Symantec
 
PDF
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec
 
PDF
Symantec Webinar | How to Detect Targeted Ransomware with MITRE ATT&CK
Symantec
 
PDF
Symantec Mobile Security Webinar
Symantec
 
PDF
Symantec Webinar Cloud Security Threat Report
Symantec
 
PDF
Symantec Cloud Security Threat Report
Symantec
 
PDF
Symantec Webinar | Security Analytics Breached! Next Generation Network Foren...
Symantec
 
PDF
Symantec Webinar | Implementing a Zero Trust Framework to Secure Modern Workf...
Symantec
 
PDF
Symantec Webinar | Tips for Successful CASB Projects
Symantec
 
PDF
Symantec Webinar: What Cyber Threats Are Lurking in Your Network?
Symantec
 
PDF
Symantec Webinar: GDPR 1 Year On
Symantec
 
PDF
Symantec ISTR 24 Webcast 2019
Symantec
 
PDF
Symantec Best Practices for Cloud Security: Insights from the Front Lines
Symantec
 
PDF
Symantec - The Importance of Building Your Zero Trust Program on a Solid Plat...
Symantec
 
PDF
Symantec Webinar | Redefining Endpoint Security- How to Better Secure the End...
Symantec
 
PDF
Symantec Webinar Using Advanced Detection and MITRE ATT&CK to Cage Fancy Bear
Symantec
 
Symantec Enterprise Security Products are now part of Broadcom
Symantec
 
Symantec Webinar | National Cyber Security Awareness Month: Fostering a Secur...
Symantec
 
Symantec Webinar | National Cyber Security Awareness Month: Protect IT
Symantec
 
Symantec Webinar | National Cyber Security Awareness Month: Secure IT
Symantec
 
Symantec Webinar | National Cyber Security Awareness Month - Own IT
Symantec
 
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec
 
Symantec Webinar | How to Detect Targeted Ransomware with MITRE ATT&CK
Symantec
 
Symantec Mobile Security Webinar
Symantec
 
Symantec Webinar Cloud Security Threat Report
Symantec
 
Symantec Cloud Security Threat Report
Symantec
 
Symantec Webinar | Security Analytics Breached! Next Generation Network Foren...
Symantec
 
Symantec Webinar | Implementing a Zero Trust Framework to Secure Modern Workf...
Symantec
 
Symantec Webinar | Tips for Successful CASB Projects
Symantec
 
Symantec Webinar: What Cyber Threats Are Lurking in Your Network?
Symantec
 
Symantec Webinar: GDPR 1 Year On
Symantec
 
Symantec ISTR 24 Webcast 2019
Symantec
 
Symantec Best Practices for Cloud Security: Insights from the Front Lines
Symantec
 
Symantec - The Importance of Building Your Zero Trust Program on a Solid Plat...
Symantec
 
Symantec Webinar | Redefining Endpoint Security- How to Better Secure the End...
Symantec
 
Symantec Webinar Using Advanced Detection and MITRE ATT&CK to Cage Fancy Bear
Symantec
 

Recently uploaded (20)

PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Teaching material agriculture food technology
LiaRayya
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
KodekX | Application Modernization Development
KodekX
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 

Symantec control compliance suite

  • 1. Symantec Control Compliance Suite 10.5 February 3, 2011
  • 2. 80% of Organizations Lack Visibility into IT Risks Question: What Color is Your Information Risk Today? For 1-in-10, it takes For 2-in-10, it takes more than one day -to- one week to nine months to find find the answer the answer For 1-in-10, it takes between one For 6-in-10, it takes between week and three months three and nine months to to find the answer find the answer Source: IT Policy Compliance Group, 2011 N: 1,202 Symantec Control Compliance Suite 10.5 2
  • 3. Why are so Many Organizations Flying Blind? Inadequate Controls Lack a Holistic View of Inability to Prioritize Assessments Risk and Report on Risk • Fail to standardize on • Diverse IT environments • Unable to identify controls frameworks • Decentralized data highest priority IT risks • Manual controls collection • Reports lack actionable mapping • Rationalizing data from data to drive resolution • Keeping up with multiple sources • Unable to report on key regulatory changes risks per stakeholder Symantec Control Compliance Suite 10.5 3
  • 4. Symantec Control Compliance Suite TECHNICAL CONTROLS • Symantec™ Control Compliance Suite Standards Manager • Symantec™ Control Compliance Suite Vulnerability Manager REPORT REMEDIATE POLICY PROCEDURAL CONTROLS • Symantec™ Control • Symantec™ • Symantec™ Control • Symantec™ Control Compliance Suite ServiceDesk 7.0 Compliance Suite Compliance Suite EVIDENCE (Infrastructure) Policy Manager Response Assessment Manager ASSETS CONTROLS DATA CONTROLS • Symantec™ Data Loss Prevention Discover 3RD PARTY EVIDENCE • Symantec™ Control Compliance Suite (Infrastructure) Symantec Control Compliance Suite 10.5 4
  • 5. Control Compliance Suite 10.5 – What’s New? Improved Risk Management Capabilities • SCAP support provides shared view of IT risks • New workflow integration helps manage people risks More Holistic View of IT Risk • Out-of-box dashboard connectors expand risk views More Comprehensive Controls Assessments • Support for PCI 2.0 and SCAP benchmarks • FDCC support for better desktop controls • OWASP support for better Web application controls Symantec Control Compliance Suite 10.5 5
  • 6. SCAP Support Provides Shared View of IT Risks • Security Content Automation Protocol • Developed by National Institute of Standards and Technology (NIST) • Better visibility into IT infrastructure • Standard way to write security checks • Eliminates need to rationalize data from multiple sources • Easily downloadable file updates – scan based on latest standards • Common framework provides a shared view of IT risks for better prioritization and faster remediation Symantec Control Compliance Suite 10.5 6
  • 7. Manage People Risk With Workflow Integration • New workflow integration with Symantec Data Loss Prevention • Target security awareness training at individuals in violation of data protection policy • New questionnaire summary pages – Overview of key security awareness risks – Drill down into more detail for remediation efforts Symantec Control Compliance Suite 10.5 7
  • 8. Control Compliance Suite 10.5 – What’s New Improved Risk Management Capabilities • SCAP support provides shared view of IT risks • New workflow integration helps manage people risk More Holistic View of Risk • Out-of-box dashboard connectors expand risk views More Comprehensive Controls Assessments • Support for PCI 2.0 and SCAP benchmarks • FDCC support for better desktop controls • OWASP support for better Web application controls Symantec Control Compliance Suite 10.5 8
  • 9. Out-of-Box Dashboard Connectors Expand Risk Views • Automatically collect data from CCS Response Assessment Manager • Populate pre-defined dashboard panels • Side by side view of risks for greater insights – e.g. – Data policy violations – Results of employee security awareness – Compliance posture of critical servers • Future releases to bring in data on – Critical vulnerabilities – Latest security threats – Real-time file integrity monitoring Symantec Control Compliance Suite 10.5 9
  • 10. Control Compliance Suite 10.5 – What’s New Improved Risk Management Capabilities • SCAP support provides shared view of IT risks • New workflow integration helps manage people risk More Holistic View of Risk • Out-of-the-box dashboard connectors expand risk views More Comprehensive Controls Assessments • Support for PCI 2.0 and SCAP benchmarks • FDCC support for better desktop controls • OWASP support for better Web application controls Symantec Control Compliance Suite 10.5 10
  • 11. CCS 10.5 FDCC Support for Better Desktop Controls • 85% of total reported security breaches can be traced to end user actions* • Built-in support for Federal Desktop Core Configuration (FDCC) • Common industry standard for US Federal government • Protects desktops against harmful configuration changes and vulnerabilities • Simplifies desktop security • Easily import monthly updates • Report on results in FDCC format *Michael Bednarczyk, Information Week Analytics Symantec Control Compliance Suite 10.5 11
  • 12. OWASP Support for Better Web Application Controls • In 2009 there were 5,500+ unique vulnerabilities in Web applications alone* • Built-in support for Open Web Application Security Protocol • Technical standards for securing Web applications • Focuses on top 10 vulnerabilities • Automatically identify and remediate risks before they are exploited • Adopted by PCI Security Standards Council *Symantec Global Internet Security Threat Report Symantec Control Compliance Suite 10.5 12
  • 13. Thank you! Copyright © 2011 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice. Symantec Control Compliance Suite 10.5 13