Summer-Ready Savings: Find the Training Course You Need at a Price You'll Love

closeClose

Symantec Endpoint Protection 14.x: Configure and Protect

  • Tuition USD $2,700 GSA  $1,798.49
  • Reviews star_rate star_rate star_rate star_rate star_half 347 Ratings
  • Course Code SEP14-CP
  • Duration 3 days
  • Available Formats Classroom

The Symantec Endpoint Protection 14.x: Configure and Protect course is designed for the network, IT security, and systems administration professionals in a Security Operations position who are tasked with configuring optimum security settings for endpoints protected by Symantec Endpoint Protection 14. This class brings context and examples of attacks and tools used by cybercriminals.

Who Can Benefit

Network, IT security, and systems administration professionals in a Security Operations position who are tasked with configuring optimum security settings for endpoints protected by Symantec Endpoint Protection 14

Prerequisites

You must have a working knowledge of advanced computer terminology, including TCP/IP networking terms, Internet terms, and an administrator-level knowledge of Microsoft Windows operating systems.

Course Details

Outline

Introduction

  • Course environment
  • Lab environment

Introducing Network Threats

  • Describing how Symantec Endpoint Protection protects each layer of the network stack
  • Discovering the tools and methods used by attackers
  • Describing the stages of an attack

Protecting against Network Attacks and Enforcing Corporate Policies using the Firewall Policy

  • Preventing network attacks
  • Examining Firewall Policy elements
  • Evaluating built-in rules
  • Creating custom firewall rules
  • Enforcing corporate security policy with firewall rules
  • Blocking network attacks using protection and stealth settings
  • Configuring advanced firewall feature

Blocking Threats with Intrusion Prevention

  • Introducing Intrusion Prevention technologies
  • Configuring the Intrusion Prevention policy
  • Managing custom signatures
  • Monitoring Intrusion Prevention events

Introducing File-Based Threats

  • Describing threat types
  • Discovering how attackers disguise their malicious applications
  • Describing threat vectors
  • Describing Advanced Persistent Threats and a typical attack scenario
  • Following security best practices to reduce risks

Preventing Attacks with SEP Layered Security

  • Virus and Spyware protection needs and solutions
  • Describing how Symantec Endpoint Protection protects each layer of the network stack
  • Examining file reputation scoring
  • Describing how SEP protects against zero-day threats and threats downloaded through files and email
  • Describing how endpoints are protected with the Intelligent Threat Cloud Service
  • Describing how the emulator executes a file in a sandbox and the machine learning engine’s role and function

Securing Windows Clients

  • Platform and Virus and Spyware Protection policy overview
  • Tailoring scans to meet an environment’s needs
  • Ensuring real-time protection for clients
  • Detecting and remediating risks in downloaded files
  • Identifying zero-day and unknown threats
  • Preventing email from downloading malware
  • Configuring advanced options
  • Monitoring virus and spyware activity

Securing Mac Clients

  • Touring the SEP for Mac client
  • Securing Mac clients
  • Monitoring Mac clients

Securing Linux Clients

  • Navigating the Linux client
  • Tailoring Virus and Spyware settings for Linux clients
  • Monitoring Linux clients

Providing Granular Control with Host Integrity

  • Ensuring client compliance with Host Integrity
  • Configuring Host Integrity
  • Troubleshooting Host Integrity
  • Monitoring Host Integrity

Controlling Application and File Access

  • Describing Application Control and concepts
  • Creating application rulesets to restrict how applications run
  • Monitoring Application Control events

Restricting Device Access for Windows and Mac Clients

  • Describing Device Control features and concepts for Windows and Mac clients
  • Enforcing access to hardware using Device Control
  • Discovering hardware access policy violations with reports, logs, and notifications

Hardening Clients with System Lockdown

  • What is System Lockdown?
  • Determining to use System Lockdown in Whitelist or Blacklist mode
  • Creating whitelists for blacklists
  • Protecting clients by testing and Implementing System Lockdown

Customizing Policies based on Location

  • Creating locations to ensure the appropriate level of security when logging on remotely
  • Determining the criteria and order of assessment before assigning policies
  • Assigning policies to locations
  • Monitoring locations on the SEPM and SEP client

Managing Security Exceptions

  • Creating file and folder exceptions for different scan types
  • Describing the automatic exclusion created during installation
  • Managing Windows and Mac exclusions
  • Monitoring security exceptions

How do I enroll?

A comprehensive listing of ExitCertified courses can be found here. You can register directly for the required course/location when you select "register". If you have any questions or prefer to speak with an ExitCertified education consultant directly, please submit your query here. A representative will contact you shortly.

How do I pay for a class?

You can pay at the time of registration using credit card (Mastercard/Visa/American Express) cheque or PO.

What if I have training credits?

ExitCertified honors all savings programs from the partners we work with. ExitCertified also offers training credits across multiple partners through our FLEX Account.

When does class start/end?

Classes begin promptly at 9:00 am, and typically end at 5:00 pm.

Lunchtime?

Lunch is normally an hour long and begins at noon. Coffee, tea, hot chocolate and juice are available all day in the kitchen. Fruit, muffins and bagels are served each morning. There are numerous restaurants near each of our centers, and some popular ones are indicated on the Area Map in the Student Welcome Handbooks - these can be picked up in the lobby or requested from one of our ExitCertified staff.

How can someone reach me during class?

If someone should need to contact you while you are in class, please have them call the center telephone number and leave a message with the receptionist.

What languages are used to deliver training?

Most courses are conducted in English, unless otherwise specified. Some courses will have the word "FRENCH" marked in red beside the scheduled date(s) indicating the language of instruction.

Very thorough and well-presented class. Pace of the class was perfect and labs offered great opportunity to practice material.

I ended up taking an iMVP class; I was originally skeptical, as other online classes have had issues, but ExitCertified puts a little more effort into this, including making sure you have a good headset and camera to keep the classes more interactive, and they also provide better back-office support to their trainers than other vendors. I do recommend the iMVP over the classroom.

Excellent facilities, excellent staff.. and the coffee is good too! Thanks for helping to advance my career and the career of my colleagues!

The presenter was knowledgeable and professional. The duration of the course, the pace and venue was suitable also

Informative class with great instructure who was able to walk through the course material, answer all questions, and give great examples.

0 options found

undo
Contact Us 1-800-803-3948
Contact Us Live Chat
FAQ Get immediate answers to our most frequently asked qestions. View FAQs arrow_forward