Symantec Endpoint Protection 14.x: Administration

Course Description

The Symantec Endpoint Protection 14.x: course is designed for the network, IT security, and systems administration professional in a Security Operations position tasked with the day-to-day operation of the SEPM management console. The class covers configuring sever-client communication, domains, groups, and locations and Active Directory integration. You also learn how Symantec Endpoint Protection uses LiveUpdate servers and Group Update Providers to deliver content to clients. In addition, you learn how to respond to incidents using monitoring and reporting. This course is also aimed at professionals who are responsible with configuring optimum security settings for endpoints protected by Symantec Endpoint Protection 14. This class brings context and examples of attacks and tools used by cybercriminals

Delivery Method – Instructor-led training (ILT)

Duration – Five days

Course Objectives

By the completion of this course, you will be able to:

  • Describe how the Symantec Endpoint Protection Manager (SEPM) communicates with clients and make appropriate changes as necessary.
  • Design and create Symantec Endpoint Protection group structures to meet the needs of your organization.
  • Respond to threats using SEPM monitoring and reporting.
  • Analyze the content delivery system (LiveUpdate).
  • Reduce bandwidth consumption using the best method to deliver content updates to clients.
  • Configure Group Update Providers.
  • Create location aware content updates.
  • Use Rapid Release definitions to remediate a virus outbreak.
  • Secure endpoints against network and file-based threats
  • Control endpoint integrity and compliance
  • Enforce adaptive security posture

 

Who Should Attend

This course is for IT and system administration professionals who are charged with managing and monitoring Symantec Endpoint Protection endpoints.

 

Prerequisites

You must have working knowledge of advanced computer terminology, including TCP/IP networking terms and Internet terms, and an administrator-level knowledge of Microsoft Windows operating systems.

 

Hands-On

This course includes practical hands-on exercises that enable you to test your new skills and begin to use those skills in a working environment.

 

 

Course Outline

  • Introducing Network Threats
  • Protecting against Network Attacks and Enforcing Corporate Policies using the Firewall Policy
  • Blocking Threats with Intrusion Prevention
  • Introducing File-Based Threats
  • Preventing Attacks with SEP Layered Security
  • Securing Windows Clients
  • Securing Mac Clients
  • Securing Linux Clients
  • Providing Granular Control with Host Integrity
  • Controlling Application and File Access
  • Restricting Device Access for Windows and Mac Clients
  • Hardening Clients with System Lockdown
  • Customizing Policies based on Location
  • Managing Security Exceptions
  • Managing Console Access and Delegating Responsibility
  • Managing Client-to-SEPM Communication
  • Managing the Client Architecture and Active Directory Integration
  • Managing Clients and Responding to Threats
  • Monitoring the Environment and Responding to Threats
  • Creating Incident and Health Reports
  • Introducing Content Updates using LiveUpdate
  • Analyzing the SEPM Content Delivery System
  • Managing Group Update Providers
  • Configuring Location

 

Cell: +27 83 415 6989 or +27 61 140 1627  |  Email: info@convexum.co.za

×