Enterprise anti-virus recommendations and experiences [closed]

anti-virus

Solution 1:

My organization uses Symantec Endpoint Protection (version 11). As many of you know, Symantec products were not the best during the last few years. I am happy to report that the newest version performs much better. It has a small memory footprint and thanks to pull updates, it will not clog your network with useless traffic. It has powerful management capabilities, you can define very granular policies that apply to specific organizational groups, users or even locations (i.e. different policies for out of office laptops vs ones currently in the office).

This is a very powerful tool that is not only an antivirus, but an Endpoint Compliance product as well. With that beings said, I think that the management console has a steep learning curve and is not intuitive at all. Trying to implement something new will often lead you to reading the documentation and FAQs. There is also no real time reporting from the clients like in the old Symantec Antivirus. In case of an infection, you have to generate multiple reports (again, not intuitive), schedule a full scan, and WAIT for results to appear at some point, since the client does not report in real time, but rather gives periodic updates to the console.

Oh, and of course: Microsoft only.

Solution 2:

I tried several solutions including :

  • AVG : dropped because it let a virus enter our network...

  • Avast : dropped because it puts a very heavy weight on our servers

  • Sophos : a very good solution, too bad their technical support is very slow to answer Sophos provides a log of useful fonctionnality including ActiveDirectory automatic synchronisation and deployment

Related

How do I install IIS management console?
run bat file at startup
How to determine USB Version 1.1 or 2.0
Why does a web server's public key certificate have to be signed by a certificate authority?
How can I record Linux commands?
Is adding the Debian repository to my apt source.list dangerous on Ubuntu? [closed]
Cron - How can I create a cronjob that runs every 15 seconds?
Is SSH Key Exchange more secure than password authentication?
How to block IP addresses in HAProxy?
Amazon EC2 bandwidth charges in case of unwanted incoming traffic(ddos/flood)?
Ping Equivalent For Checking If A Port Is Open
HP Smart Array; How to safely remove a physcial drive with SMART predictive failure from array so it can be replaced?