Open a support ticket or chat with an agent: https://support.symantec.com/us/en/contact-us.html. Call Symantec Enterprise Support: Broadcom TechDocs Symantec Endpoint Security | Specs, reviews and EoL info - InvGate Comparison with Similar Assets: * Strengths vs. Competitors: Symantec Endpoint Security is noted for comprehensive coverage, advan... InvGate What is Symantec Endpoint Protection? - Glossary - Training Camp What is Symantec Endpoint Protection? Symantec Endpoint Protection is a comprehensive security software that combines antivirus, f... Training Camp Sed Eps PB105 | PDF | Security - Scribd Solution Overview • Application Control assesses the risk of applications. ... Symantec Endpoint Security Complete delivers the ap... Scribd Symantec Endpoint Security Reviews, Pros and Cons - Software Advice Pros: Product is cost effect, easy to deploy and easy to manage. Cons: Product lacks some new features compared to its competitors... Software Advice Broadcom - Wikipedia Broadcom operates its enterprise security business under the Symantec brand. It purchased the suite of enterprise security product... Wikipedia
The version lineage for Symantec's enterprise endpoint product is as follows:
Symantec Endpoint Protection 14.x (This was the standard for several years, culminating in 14.3). Symantec Endpoint Security (SES) (The cloud-native successor, which adopted a different versioning scheme, currently sitting in the 14.x range or simply "SES" builds).
It is highly likely you are looking for information on one of two things: symantec endpoint protection 15
The final major on-premises release: Symantec Endpoint Protection 14.3 . The modern cloud-based successor: Symantec Endpoint Security (SES) .
Below is a summary (white-paper style overview) of the architecture and capabilities of the Symantec Endpoint Protection 14 series, which is likely what you are researching.
Overview: Symantec Endpoint Protection 14.x Architecture Symantec Endpoint Protection (SEP) 14 is designed to provide superior protection across traditional and mobile devices using a layered approach to security. It combines signature-based antivirus with advanced proactive defenses like machine learning and exploit prevention. 1. Core Protection Technologies (The "Layered" Approach) The architecture relies on five distinct layers of defense designed to stop threats at different stages of the attack chain: Open a support ticket or chat with an agent: https://support
Antivirus/Antimalware (Signature-based): The foundational layer. It uses definitions (signatures) to block known malware, spyware, and adware. Advanced Machine Learning (Proactive): Introduced heavily in SEP 14, this engine analyzes files locally on the endpoint without relying solely on cloud connectivity. It uses algorithmic classification to identify and block unknown (zero-day) malware based on file attributes and behaviors. Bloodhound Heuristic Technologies: Scans for suspicious file characteristics and behaviors that suggest a file might be malicious, even if it lacks a signature. Intrusion Prevention System (IPS): A network-level defense that inspects incoming and outgoing traffic to identify and block vulnerability exploits and drive-by downloads. Memory Exploit Mitigation: A critical layer that looks for suspicious behavior in system memory (heap spray mitigation, ROP mitigation) to prevent file-less attacks and memory corruption exploits.
2. System Architecture Components SEP 14 typically consists of an on-premises management infrastructure:
Symantec Endpoint Protection Manager (SEPM): The centralized management console. It is a web-based application used by administrators to create security policies, manage clients, view logs, and generate reports. Database: SEPM utilizes a database (typically embedded or Microsoft SQL Server) to store configuration data, policies, and client logs. Endpoint Client: The agent installed on the managed devices (Windows, Linux, Mac). It communicates with SEPM to download policies and upload event logs. Enrollment Server: Facilitates communication between the management server and cloud components (if utilizing hybrid management). InvGate What is Symantec Endpoint Protection
3. Key Features and Capabilities
Integrated Cyber Defense: SEP 14 was designed to integrate with the broader Symantec Integrated Cyber Defense (ICD) platform, allowing data sharing between endpoint, email, and web gateways. Cloud-Enabled Management: While SEP 14 is on-premises software, it introduced tighter integration with Symantec's cloud analytics (SES) for advanced threat hunting. Deception Technology: Some versions included "deception" techniques, planting fake file shares or credentials to lure attackers into revealing themselves. Application Hardening: Prevents attackers from exploiting trusted applications (like PowerShell or Office macros) by restricting their execution behaviors.