The next release of the Symantec Protection Center (SPC) management platform focuses heavily on facilitating enterprise responses to security threats through tighter integration of its portfolio of products, automated workflows and role-based prioritization of alerts.
SPC 2.0, announced at Symantec's Vision 2011 conference, adds security intelligence capabilities to the current platform, which emphasizes centralized management with features such as single sign-on. The new release collects data from all supported Symantec security products to provide local reporting, in combination with feeds from Symantec's Global Intelligence Network (GIN).
"The way people buy security products is to buy tactically," says Jon Oltsik, principal analyst at Enterprise Strategy Group. "They are all under different amortization schedules, so when the next one comes up, this is a way for Symantec to start pitching an integrated story."
The more comprehensive data collection enables cross-product product reporting on trends and threats in email security, malware and asset status based on information collected by client and server agents. SPC 2.0 introduces what Symantec calls basic event correlation to produce actionable information from the integrated product and GIN feeds.
SPC 2.0 provides role-based prioritization of reporting, so admins and managers can view action items based on urgency and relevance to their area of responsibility (for example, desktops, compliance or email). It includes built-in workflow templates to make it easier for reports and alerts to kick off real-time response activities from the central console.