(Page 2 of 2)
“Symantec has built their entire security product strategy around the idea that every computer will have an antivirus client/agent installed and they can use that computer installation as the foundation for all the rest of their security products,” he said. “Of course, this entire approach to security products is called in to question if we realize that antivirus is no longer the be all, end all, central product in a security strategy.”
As he sees it, it’s unfortunate that Symantec chose to promote "detect and respond" as the solution to security problems that organizations are facing today. Based on all that we know about the vast majority of all breaches, he said it’s clear that improving security should be a huge priority.
“Most organizations would dramatically benefit their security posture with improved threat and vulnerability management and attack intelligence,” Cowperthwaite said. “It would enable them to understand where and how an attacker will breach their network and allow the organization to take measurable, strong steps to improve their security.”
Jon Oltsik, senior principal analyst, at Enterprise Security Group, confirmed the “significant” need in the market for greater advanced threat protection. He said many vendors do not have the holistic coverage or full functionality needed to adequately detect and respond to targeted attacks.
“Symantec is well positioned to deliver an end-to-end advanced threat solution by building on the technologies it offers today, integrating across its portfolio, and delivering it as a service enhanced by an evolving partner ecosystem,” Olstik said. “By leveraging its global intelligence and building-in completely new incident response capabilities, Symantec can really address a multitude of enterprise cybersecurity requirements.”
Posted: 2014-05-08 @ 7:15am PT
@GB: I think you're right. I think all the press that I've seen jumped on Symantec's statement that antivirus is dead. I think it was a PR mistake for Symantec to ever say that. It's not dead... it's just not sufficient anymore, as you pointed out.
Posted: 2014-05-08 @ 7:12am PT
Overall this is a good article however to say that Symantec is investing in adding more capabilities for detection and response is not the same thing as saying Symantec is somehow no longer still focused on prevention. I'm just leaving their Vision conference in Las Vegas and it seems they are just as focused on prevention as ever. I think the point was that AV alone is not enough.
Posted: 2014-05-06 @ 3:20pm PT
Whatever happened to 'Glass Wall'?