Driving Company Security is Challenging. Centralized Management Makes it Simple.

Transcription

1 Driving Company Security is Challenging. Centralized Management Makes it Simple.

2 Overview - P3 Security Threats, Downtime and High Costs - P3 Threats to Company Security and Profitability - P4 A Revolutionary Solution: Centralized Management of PC Endpoint Security Software - P4 Comodo Endpoint Security Manager A Fresh Approach to Centralized Management - P5 Comodo Endpoint Security Manager and Comodo Security Software A Great Starting Point to Secure your Business - P5 Comodo Internet Security - P6 Comodo Disk Encryption - P6 The Best Solution to Company Security is One You Can Grow With - P7 Where to Learn More - P7 Executive Summary - P8 About Comodo - P9 P 2

3 Overview In today s world, the explosion of sophisticated malware and virus threats make driving company security a challenge. Especially since, in addition to malware and virus threats, businesses with more than 5 desktops face other PC endpoint security challenges, as well! Just a few of these challenges include: Limited IT staff resources Limited software budgets Non-standard PC endpoint software image/configuration Immature and/or loosely enforced security policies High staff turn-over Virtual and other away from the office work done These challenges leave businesses vulnerable and pose threats to both company security and profitability. Security Threats, Downtime and High Costs These challenges pose major threats to both company security and profitability. Even a small number of unprotected or under-protected PC endpoints can jeopardize an entire business. Having some form of security software deployed on each PC endpoint within a business is better than not having it, but only marginally better. Leaving the administration of that software up to each individual user is a recipe for a security breach because a single computer with weak security is the weak link in your company s entire security chain. Threats to business profitability can arise as well. Just a modest incident can take computers off-line for hours, impacting company productivity, response to customers, even whole business partner relationships! Since the product so many companies provide these days is valuable information that must be stored and distributed via company computers, data loss or data theft have ramifications well beyond lost productivity. After all, in a very real sense, that information is the company itself! Then too, companies that utilize understaffed and overworked IT employees in an attempt to keep each individual PC endpoint secure, find this exercise costly and one that takes away from other pressing tasks that can improve employee productivity, customer satisfaction, and company profitability. Finally, doing the job right has historically required costly software licensing from security software companies. P 3

4 Threats to Company Security and Profitability Organizations of all sizes are struggling to make sure their PCs have all the latest security patches and are in compliance with corporate policies. Managing laptops and desktops with security software from different vendors presents a challenge to any administrator, just as making changes to a number of computers individually can become an unmanageable task. Moreover, both threat sophistication and zero day exposure are increasing. This leaves businesses with loosely enforced PC security policies exposed to attacks that will affect performance and productivity. Not only are businesses leaving themselves open to attacks with loosely enforced security policies but, having detection based software, they are also left wide open to vulnerability! From the time a virus is reported to the time a signature is published, hours or even days could have elapsed. A business cannot afford a window of vulnerability this extreme. Before the signature is published, the business could have encountered a security breach, data loss, data theft or downtime. A single infected computer could be the weak link causing a whole network to go down. Businesses cannot afford to have computers go offline for minutes, let alone hours or days. In any business, time is money! A Revolutionary Solution: Centralized Management of PC Endpoint Security Software Centralized management of PC endpoint security software can enhance both company security and profitability. Centralized management gives qualified systems administrators within an organization the ability to manage global or work group security policies from their own desktop consoles. It allows them to apply the necessary rigor and confidently control today s business environment demands. From a security perspective, this means that critical procedures ranging from installing updates, configuring security levels, encrypting data and allowing/disallowing various programs to run (or even be installed), can be enacted centrally by a trained professional. This is far better than allowing such processes to be enacted by PC endpoint untrained users. Even in organizations with minimally defined formal security policies, taking this step can go a long way to lowering the security risk to a business. Business profitability is enhanced through increased productivity of the IT department and the general staff, as ad-hoc manual processes are replaced by standardized, automated ones. PC endpoint or network outages are likely to be reduced as a result of more effective security policy enforcement. In short, the whole organization functions better. P 4

5 Comodo Endpoint Security Manager A Fresh Approach to Centralized Management Comodo Endpoint Security Manager (CESM) is unique. Once installed, Endpoint Security Manager can be configured to scan for all endpoints connected to the network using either Active Directory or Workgroup environments. Through the use of a single agent installed remotely, Endpoint Security Manager s intuitive interface allows for centralized management of security policies and task scheduling. Additionally, Endpoint Security Manager can be configured to protect registry keys from being changed by malicious programs, port monitoring and more -- all from a single console! Administrators are also able to configure a local update server to download database (AV signature) and software updates to managed computers. This saves time and bandwidth when rolling out updates to a large number of managed nodes. Comodo Endpoint Security Manager and Comodo Security Software A Great Starting Point to Secure your Business Comodo s range of endpoint security solutions offers integrated and layered protection for network workstations. Comodo s endpoint security solutions greatly strengthen overall network security while helping businesses realize substantial operational cost efficiencies. Individually, each product delivers superior protection against its specific threat vector. When used as a coordinated solution suite, they provide a level of network security that is unrivaled in P 5

6 Comodo Internet Security COMODO INTERNET SECURITY PROVIDES 360 PROTECTION AGAINST INTERNAL AND EXTERNAL THREATS BY COMBINING POWERFUL ANTIVIRUS PROTECTION, AN ENTERPRISE CLASS PACKET FILTERING FIREWALL AND AN ADVANCED HOST INTRUSION PREVENTION SYSTEM CALLED DEFENSE+. Comodo Internet Security should be the first and primary line of defense for endpoint machines because it blocks viruses and malware before they have the opportunity to install. The Defense+ component of Comodo Internet Security is a rules-based host intrusion prevention system that constantly monitors the activities of all executable files on endpoint machines. It provides the ability to control all execution paths, therefore deny malware access to the CPU. This means it will not even permit malware to execute! Preventing malware from executing inherently protects the endpoint from becoming infected and ultimately prevents malware from spreading throughout the network. In addition to monitoring CPU usage through the use of Comodo Internet Security, critical components such as memory, port and registry settings, are monitored and protected from attack. Comodo Internet Security s firewall offers the highest level of security against inbound and outbound threats. It also blocks malicious software from transmitting confidential company data over the Internet. Comodo Firewall makes it easy for you to specify exactly which endpoint applications can connect to the Internet. It then blocks unacceptable applications and tells an administrator if an installed application has attempted to breach network security. Comodo Internet Security also incorporates a fullfledged Antivirus engine. The AV software leverages multiple technologies, including Real-Time/On-Access Scanning, On Demand Scanning, heuristics to identify previously unknown viruses, and a full-featured scan scheduler. The application also allows administrators to create custom scan profiles which can be re-used across all scan types. They feature full-event logging, quarantine and daily signature updates. Comodo Antivirus detects and removes threats that are present on your computer. It even forms an additional layer of security on top of the threat prevention offered by the Firewall and Defense+ components! CESM provides administrators with immediate and centralized notification of potential threats occurring on any part of the network. This means emergency response times are lowered and network-wide security policy changes can be rolled out swiftly and decisively to all protected nodes. Comodo Disk Encryption COMODO DISK ENCRYPTION (CDE) ALLOWS ENTERPRISES TO PROTECT THE DATA ON EMPLOYEE LAPTOPS, HARD DRIVES AND REMOTE STORAGE DEVICES. CDE also partitions against theft or loss. A full disk encryption product, CDE uses on-the-fly encryption and two levels of authentication to ensure that endpoint machines will not even boot if the correct decryption key is not presented. Administrators can configure USB memory sticks to act as authentication keys to decrypt the drives and partitions of employee machines. This key must be plugged into the system to accept the encrypted drive(s) whenever the system is started. Companies that enforce USB authentication on employee laptops can be assured that critical company data cannot be compromised should that laptop be mislaid or stolen. Once installed and configured, CDE is transparent to the end-user. In fact, encrypted drives can continue to be used as before with no performance slow down. P 6

7 The Best Solution to Company Security is One You Can Grow With Comodo s range of PC endpoint security solutions offer integrated and layered protection for network workstations. PC endpoint security allows a company to stay in control of their security policies. It also allows qualified system administrators within an organization to manage global or work group security policies from their own desktop consoles. They can apply the necessary rigor and confidently control today s business environment demands. From a security perspective, this means that critical procedures like installing updates, configuring security levels, encrypting data and allowing/disallowing various programs to run (or even be installed) can be enacted by a trained professional, rather than a PC endpoint untrained user. Even in organizations with minimally defined security policies, taking this step can go a long way to lowering the security risk to a business. PC endpoint security greatly strengthens overall network security while helping businesses realize substantial operational cost efficiencies. Business profitability is enhanced through increased productivity of the IT department and the general staff, as ad-hoc manual processes are replaced by standardized, automated ones. PC endpoint or network outages are likely to be reduced as a result of more effective security policy enforcement. In short, the whole organization functions better. All Comodo products deliver superior protection against their specific threat vectors. When used as a coordinated solution suite, they provide a level of network security that is unrivaled in the industry. Comodo is the online security industry s No.1 Innovator. Comodo can also boast the fastest growing portfolio of PC Endpoint Security products. For instance, Endpoint Security Manager customers will soon have access to an even broader range of Comodo Endpoint Security solutions. These new solutions will offer an advantage for future Endpoint Security Manager customers by providing them with a full suite of security software that can be managed through a single console. Also in development are integrations such as Comodo Time Machine (disaster recovery software), Comodo Secure , and more. Policies and controls for all of these solutions will be manageable from a single administrator s console. CESM s modular, plug n secure architecture means new and existing Comodo Security products can be quickly added or removed as per company requirements, making the future even more secure for businesses that choose Comodo. Comodo has consistently helped businesses around the globe address their unique security requirements. Deploying CESM as your endpoint security manager means embarking on a relationship with a security partner that has the deepest expertise, experience and understanding of how to help businesses achieve their security and productivity goals. Where to Learn More To learn more or discuss how Comodo Endpoint Security Solutions can help strengthen the security of your network, please visit us on: us at [email protected] or call us at P 7

8 Executive Summary Businesses with multiple desktops face many PC endpoint security challenges. productivity of a company s IT department and entire staff, as ad-hoc manual processes are replaced by standardized, automated ones. PC endpoint or network outages are likely to be reduced, as a result of more effective security policy enforcement. In short, the whole organization functions better. Some of these challenges include limited IT staff, limited software budgets, immature and/or loosely enforced security policies and non-standard PC endpoint software image/configuration. These threats pose many challenges to company security and profitability. Even a small number of unprotected or under-protected PC endpoints can jeopardize the security of an entire business. And just a modest incident can take computers off-line for hours, impacting company productivity, response to customers, even whole business partner relationships! Since the products of so many businesses is valuable information that must be stored and distributed via company computers, data loss and data theft is a major concern. It has ramifications well beyond lost productivity, because in a very real sense, that information is the company itself! Centralized management of PC endpoint security software can enhance both company security and profitability. Centralized management gives qualified systems administrators within an organization the ability to manage global or work group security policies from their own desktop consoles. They can apply the necessary rigor and confidently control today s business environment demands. From a security perspective, this means that critical procedures like installing updates, configuring security levels, encrypting data and allowing/disallowing various programs to run (or even be installed) can be enacted centrally by a trained professional, rather than a PC endpoint untrained user. Business profitability is enhanced through increased Comodo s Endpoint Security Manager is the choice of a growing number of corporations. Once installed, Endpoint Security Manager can be configured to scan for all endpoints connected to the network, using either Active Directory or Workgroup environments. And it can all be done through the use of a single agent installed remotely. Endpoint Security Manager s intuitive interface allows for centralized management of security policies and task scheduling. Additionally, Endpoint Security Manager can be configured to protect registry keys form being changed by malicious programs, port monitoring and more -- all from a single console! Administrators are also able to configure a local update server to download database, AV signature and software updates to managed computers. This saves time and bandwidth when rolling out updates to a large number of managed nodes. Comodo Endpoint Security Manager provides top quality Internet Security that protects against internal and external threats by combining powerful Antivirus protection, an enterprise class packet filtering firewall and an advanced host intrusion prevention system called Defense +. Comodo Endpoint Security Manager has also been integrated with Comodo Disk Encryption so enterprises can protect the data on employee laptops, hard drives and remote storage devices. It also partitions against theft or loss. Each Comodo product delivers superior protection against its specific threat vector. When used as a coordinated solution suite, they provide a level of network security that is unrivaled in the industry. Using Comodo endpoint security will greatly strengthen overall network security at your company, while helping your business realize substantial operations cost efficiencies. P 8

9 The Comodo companies are leading global providers of Security, Identity and Trust Assurance services on the Internet. Comodo CA offers a comprehensive array of PKI Digital Certificates and Management Services, Identity and Content Authentication (Two-Factor - Multi-Factor) software, Network Vulnerability Scanning and PCI Compliance solutions. In addition, with over 10,000,000 installations of its threat prevention products, Comodo Security Solutions maintain an extensive suite of endpoint security software and services for businesses and consumers. Comodo Group, Inc. 525 Washington Blvd. Jersey City, NJ United States Tel: +1.(888) Innovation, a core competence in PKI, and a commitment to reversing the growth of Internet-crime, distinguish the Comodo companies as vital players in the Internet s ongoing development. Comodo, with offices in the US, UK, China, India, Romania and the Ukraine, secures and authenticates the online transactions and communications for over 200,000 businesses and millions of consumers, providing the intelligent security, authentication and assurance services necessary for trust in online transactions. For additional information on Comodo visit