Symantec Event Manager for Antivirus 10263935-ML User Manual

Security Management

SECURITY TECHNOLOGY

√

The need to simplify security data transformation and analysis

In today’s increasingly complex security landscape, IT administrators are inundated with a wealth

of data from a growing variety of security systems and devices distributed across the enterprise.

Capturing the data, analyzing it, and transforming it into useful security information has become a

significant time – and resource – intensive challenge. Symantec

™

Event Manager for Antivirus

enables organizations to leverage that data and capitalize on their existing antivirus and client

security investments, providing a holistic view of the enterprise’s security posture.

√

Comprehensive alert notification and enterprise reporting

Symantec

™

Event Manager for Antivirus provides centralized, cross-tier logging, alerting, and

reporting for all Symantec virus and client protection solutions enterprise-wide, plus optional 

support for select third-party antivirus and network management products.

•

PROVIDES VISUALIZATION OF SECURITY POSTURE FROM CENTRAL CONSOLE By consolidating

cross-tier security event information and then standardizing and aggregating the data,

Symantec Event Manager for Antivirus provides a visualization of the enterprise’s antivirus and

client security posture from a central management console.

•

HELPS QUICKLY IDENTIFY SYSTEMS NEEDING UPDATES A new group of reports shows the

most recent virus definition update for every computer, allowing administrators to quickly 

identify systems needing updates. 

•

GRAPHICAL REPORT OF INFECTED MACHINES Administrators can view a graphical report that

shows which machines were infected per day over the past 60-90 days. 

•

SPYWARE AND ADWARE REPORTS Symantec

™

Client Security Expanded Threat Reports are

available to report on unwanted spyware and adware.

KEY POINTS

∆

Provides a holistic view of

Symantec antivirus and client

security solutions and select

third-party antivirus deployments

∆

NEW! Threat Tracer identifies 

the source of threats for

improved forensics

∆

NEW! Multiple instances of a 

single virus are entered once into

the database, to conserve space

during outbreaks

∆

NEW! Administrators can

exclude the forwarding of 

certain events to the 

aggregation manager, for

improved system performance

∆

NEW! New reports help adminis-

trators systems that need virus

definition updates and show

machines infected per day over

the last 60 and 90 days

∆

NEW! Symantec Client Security

Expanded Threat Reports report

on unwanted spyware and adware

∆

Minimizes management costs

and complexity with centralized,

cross-tier logging, alerting, 

and reporting 

∆

Maximizes system uptime by

helping accelerate response time

to virus incidents and blended

security threats

∆

Enhances IT credibility and

enables better decision-making

with centralized, consolidated

information and insightful analyses

Greater Metropolitan Area (20,000 clients)

Symantec Event Manager

for Antivirus

Office 

5

 Manager

Office 1 Manager

Office 9 Manager

100-to-400 clients/office

Plant 1 DataStore

Plant 1 Directory

Plant 1 Manager

Plant 1 Manager

500-to-6000

 clients/plant