EndPoint Security
IT Solutions that WorkSMOverview
EndPoint Caveat. We wish to make clear that even the software solutions described below have their limitations. The best way to limit end-point risk is to simply get rid of the laptop, workstation PC or other ‘intelligent’ end-point. It far more cost effective, easier to maintain, and support is minimal. How? Read about Wyse Thin Client - Healthcare or Wyse - Thin Client - Business.
But being the realists that we are, also understand that eliminating intelligent endpoints cannot always be done. So we continue with our End-point security discussion
Endpoint Security is often misunderstood term. According to a recent study by research firm IDC, the confusion over endpoint security is leaving enterprises open to attack from destructive malicious sources. Some vendors claim endpoint security is only centrally managed personal/workstation firewall and/or anti-virus software. This is what we call the traditional definition/approach.
The traditional approach focused on protecting users. While it is true that one function of Endpoint security is to protect the end user, what protects organization from the end user? By one estimate, 50% data loss incidents originating at endpoints and usually by an organizations’ own employees. The average total cost of a corporate data breach stands at $6.3 million and lost business accounts for 65% of breach costs, according to a study by the Ponemon Institute.
Endpoints include an include workstations, laptops, handhelds, iPads, smart-phones and specialized equipment such as inventory scanners and point-of-sale terminals. It also includes servers that host applications, terminal services, or virtualized desktops. Do anti-virus and personal firewalls prevent date from, leaking via read/write CDs, USB drives, thumb drives, and legacy floppies? Certainly not!
The most complex endpoint security programs use network access control to grant authentication and specific forms of access to user devices as well as other controls. We call these 'Advanced EndPoint Security definition/approach'.
Briefly, Advanced EndPoint Security systems work this way: when a device first logs into the network, before granting access, the program validates user credentials, scans the device to make sure that it complies with corporate policies. These programs can also scan for unauthorized software, force anti-virus updates, etc. They also do several other very important items: control user access to removable media, monitor, copy and deletions. Control access applications, and enforces encryption policies of information stored on the endpoint device.
IT Solutions that WorkSM
We have tested several protects that claim to advanced EndPoint Security, but the only one we really like and support at the present is the Cyberoam Endpoint Data Protection Suite.
Cyberoam EndPoint Security Suite
The Cyberoam Endpoint Data Protection Suite consists of the four modules of 1) data protection and encryption, 2) device management, 3) application control and 4) asset management.
The data encryption and protection module controls document transfer and read-write access to files, as well as shadow copy protection and print controls. The device management module controls user access to removable media, such as USB storage devices, as well as many other types of removable storage. These can be disabled or monitored. The application control module controls use of applications, such as instant messaging, peer-to-peer and FTP utilities. Access can be disabled. The asset management module facilitates asset management and inventory control across the enterprise network.
Benefits
- Prevent endpoint data leakage
- Extend data security beyond the network
- Enhance employee productivity by blocking unauthorized applications
- Streamline IT infrastructure management
- Lower Total Cost of Ownership of IT infrastructure
- Reduce malware penetration through patch management
- Meet security compliance with IT asset management
- Reduce legal liability and business losses
Features
- Block file transfer by filename or extension over
- Removable devices
- Chat, email, file sharing applications and more
- Network sharing
- Printers
- Specify read-write access to white-listed removable devices
- Offer encryption and decryption for files and removable devices
- Control file transfer via email and Instant Messengers based on file name, extension, size, within and outside the network
- Control access to printers
- Create shadow copies of files during creation, modification, transfer, print
- Offer customizable alerts to administrators and warning to users
- Create logs-reports of access, usage, modification, transfer and deletion of files.
For more information, you may click on the link to view the Cyberoam EndPoint Security Suite datasheet.
Traditional EndPoint Security Approach
Over the years we have tested and used several. We have found that the major brands of McAfee, Symantec, and even Trend are bloated resource hogs which are difficult to manage centrally and significantly degrade system performance.
We have several solutions that we have tested, deployed and support.
Software Suites
For Suites, we prefer the ESET Smart Security Suite business edition. It has a small resource footprint, is an effective anti-malware tool, and is easily central managed.
Another option is the Agnitum’s Outpost Network Security. We originally began using Outpost for the workstation firewall (and in fact still do). Their firewall is exception and has a small resource footprint. The Network Security Suite is there Business Edition and offers the centralized management required for business use. One nice feature of this product is that it also includes an endpoint USB drive lock down option.
Non-Software Suites
ESET NOD32 only unbundles their anti-Virus software and also offers separate products for MS Exchange and a few other mail servers
Agnitum Outpost unbundles both the anti-virus and firewall products.
We support both products, so please Contact us learn more about these appliances (and others) to see what is the best fit for your organization!
| ESET Datasheets | Agnitum Datasheets |
| Eset NOD32 Smart Security Suite Business Ed. | Outpost Network Security Suite |
| Eset NOD32 AntiVirus Business Ed. | Outpost Pro Firewall |
We just don't talk about Health IT, we get Health IT done.SM