This week we're focusing on Symantec EndPoint Protection. Below we will be sharing information from Workflowswat.com to describe the features and functionality of the template. You can also access videos at www.workflowswat.com/process-templates.html.
SEP Event Management Template
This template provides a “Best Practice” process to assist customers with managing SEP endpoints.
The main features of this template are…
- Endpoint updates and scans. When Workflow discovers an endpoint that has an unresolved alert in SEPM, Workflow automatically runs the SEP virus update process on the endpoint and initiates a targeted scan. The results of the scan are sent to the SEP admin when complete.
- Routing Rules/Automatic assignment – A console has been created in Workflow that allows the SEP administrator to configure “Routing Rules”. These rules are then used to automatically assign SEP Alert, Host Integrity, or Old Definition tasks to the various groups responsible for remediating items that SEP discovers. Note – This process is only used when an item cannot be automatically remediated via automatic updates and scans.
- Audit reporting – Who, What, When. Customers can run process reports by Group, Virus Type, and Date Range. These reports can be provided to regulators and help avoid many of the challenges that can occur during an audit. Also, these reports add value by providing metrics for continuous process improvement.
- Customers can take the base template and extend it to integrate with other systems as needed.
This is the last post in the Symantec Security Enhanced by Workflow series. We'll keep you posted as new Workflow templates are developed by Symantec as well as other topics relating to Workflow and ServiceDesk 7.
No comments:
Post a Comment