How can you effectively and cost-efficiently manage and secure your endpoints in today’s evolving IT environment? By managing endpoints throughout your entire lifecycle. It’s not simply about adding new security layers – i.e. antivirus, patch management, configuration management, etc. – but how these capabilities work together without degrading endpoint performance and, subsequently, end-user and IT productivity. In this Webcast, you will learn: 1. Strategies that enable IT operations and security to effectively break down the traditional silos to reduce IT risk and improve overall productivity; 2. How to centralize management and visibility of your entire endpoint environment – across physical and virtual machines, online and offline systems, and a variety of operating systems and applications; 3. How to ensure an effective, defense-in-depth security approach; 4. Key capabilities to look for in an endpoint management and security suite; 5. Cost benefits of consolidating best-of-breed endpoint operations and security technologies into one unified solution. Featured Speakers Mike Rothman - Analyst & President - Securosis Paul Zimski - VP of Solution Strategy - Lumension Salvatore Salamone - Executive Editor, Strategic Content - Ziff Davis Enterprise

1. Stronger Security and IT Operational Excellence:How to Achieve Both from Your Endpoint Management and Security Suite Hosted by

2. Mike Rothman Analyst & President Securosis LLC http://securosis.com

3. *Any* Computing Connecting to critical information At any time From any where On any device

4. Defining the “Endpoint”

5. Over the past few years, lots of stuff has been added to endpoint agents: Anti-spyware HIPS Firewall Encryption 10 lbs of **** in a 2 lb. bag Endpoint Agent Overload

6. Problem: Scale Attacks aplenty Millions of new malware samples Automated attack kits Financial motives brings new attackers The problem isn’t getting better

7. Problem: Effectiveness Detection rates on slippery downward slope Today’s attacks are not predictable Attacks target different exposures Web browsers Applications (XSS & CSRF)

8. Problem: Silos

9. Ah No. Are we more Secure?

10. It’s not working. So why are endpoint security suites still a multi-billion dollar business?

12. Oh crap! The Cloud is coming... What happens when data can be both internal/external? Perimeter? Buh Bye. Increases focus on the endpoint.

13. The Answer? Layered Defenses Fundamentals Management Leverage

14. Operating Systems Operating systems are getting more secure (relatively) Windows 7, Mac OS X Mobile OS lockdown and control (iOS vs. Android) But it’s still a lot of code and there will be problems Anti-Exploitation Techniques Data Execution Prevention (DEP) Address Space Layout Randomization (ASLR)

15. Endpoint Security Fundamentals Patch and Update Secure Configurations HIPS/file integrity monitoring System lockdown (standard user, GPO, white listing)

16. The Continuum of Integration

17. Visibility vs. Control

18. Summary Endpoint security is not dead, nor is it a panacea Agent technologies evolving Management silos hurt efficiency and effectiveness Defense in depth still critical Pay attention to the fundamentals

19. Mike Rothman Securosis LLC mrothman@securosis.com http://securosis.com Twitter: @securityincite

20. Paul ZimskiVP of Solution StrategyLumension

22. Increasing Agent Bloat

23. Increasing and costly back-end Integration

24. Lack of visibility and collaboration with IT security

25. Need for better accuracy

26. User access rights (Local Admin)

27. Lack of Scalability

28. Silos and insufficient collaboration between IT and business operations* *Worldwide State of The Endpoint Report 2009

30. 3-6 different management consoles on average

31. Agent Bloat

32. 3-10 agents* installed per endpoint

33. Decreased network performance

34. Lack of Control

35. 54% of IT security professionals cite managing the complexity of security as their #1 challenge

36. Decreasing visibility-disparate data

37. Ad-hoc monitoring of security posture

38. 43% of existing access rights were either excessive or should have been retired

39. Increasing TCO of Point Technologies

40. Integration & MaintenanceLumension Global State of The Worldwide Endpoint 2009 22

41. New Approach to Endpoint Management & Security

42. Agile Architecture Best of BreedSolution Capability Modular Delivery The Lumension Approach 24

44. Consolidated data

45. Intuitive web interface

46. Central control & visibility

47. Operational & strategic reporting

48. Improved productivity2009 Integration Endpoint Operations Endpoint Security Compliance 25 25

49. Modular Agent – Pluggable Enterprise Service Bus Single common agent delivers and manages many capabilities via pluggable services Provides single, integrated communication mechanism between the agent and the server Monitors and secures modules on the endpoint Patch and Remediation Event Queue Application Control Client Transport COMM Security 26 26

50. Lumension® Endpoint Management and Security Suite Single Endpoint Management solution on a unified platform Ease of management Feature extensibility via separately licensed modules Integrated endpoint security workflows Reduced management overhead Integrated console Centralized visibility and control Single agent architecture L.E.M.S.S. Platform Antivirus Application Control Patch & Remediation Power Management n Module 27 27

52. Leverage existing endpoint technology

53. Reduced integration and maintenance costs

54. Improved endpoint performance

55. More effective endpoint securityAgile architecture Disparate Architecture Single Promotable Agent Many Agents 28

57. Stop unwanted / un-trusted change with Application Control

58. Protect against insider risk with Device Control

59. Deploy a broad defensive perimeter with AntiVirus

60. Reduce endpoint complexity with a truly integrated Endpoint Management and Security SuiteAntiVirus Device Control Device Control Application Control Application Control Patch & Config. Mgmt. 29

61. Lumension Solution Strategy Endpoint Management & Security “By 2011, leading enterprise endpoint protection platform (EPP) and PC life cycle management (PCLM) vendors will offer mature integrated security and operations tools. IT organizations should understand the benefits of these tools and develop a strategy for adoption.” Peter Firstbrook Gartner Analyst 2009 Endpoint Operations Endpoint Security Unified Platform 30

63. Heterogeneous O/S support

64. Linux (RHEL), Oracle Enterprise Linux, Microsoft, Mac

65. Largest 3rd party application vulnerability content support

66. Adobe, Microsoft, Apple and more

67. Power Management supports custom power policy definition and reporting

68. NIST-validated Configuration Management solution

69. Mandatory baseline import/export for efficient syndication of baseline polices31

71. Comprehensive discovery of apps, online/offline machines and removable devices

72. Proactive protection against Zero-day threats

73. Effective malware removal to ensure cleaned system environments

74. Integrated workflow across multiple defense layers

75. Flexible Trust Engine for change mgmt. across processes, paths, users, vendors

76. Encryption to ensure secure data in the event of accidental or malicious data loss32

78. Delivers a more effective defense-in-depth endpoint security solution

79. Simplifies endpoint system and agent management through a single console

80. Centralizes policy management and reporting

81. Expands operational and security visibility

82. Reduces technology complexity and integration costs

83. Flexible and modularly licensed best-of-breed application modules

84. Scalable and agile single-agent, single-server platform architecture33

85. Q&A

86. Global Headquarters 8660 East Hartford Drive Suite 300 Scottsdale, AZ 85255 1.888.725.7828 info@lumension.com

88. Provide your feedback! Please complete our survey

89. View our calendar of upcoming events

90. A recorded version of this seminar will be available at www.eSeminarsLive.comHosted by