SurfControl Enterprise Threat Shield

SurfControl threat expertise – SurfControl monitors new and emerging Internet threats around-the-clock and around the globe to deliver up-to-date protection against today’s blended threats; no matter how they arrive.

All users and all drives – Enterprise Threat Shield protects all users from endpoint threats, both inside and outside the corporate network, across all drives, whether local or removable, and even gives administrators the option to lock down USB devices.

Multi-layered technology – Enterprise Threat Shield delivers cutting-edge protection through multiple layers of technology including robust, real-time scans that can delete threats as they occur; and comprehensive, schedulable scanning-and-removal technology.

Flexible policy management – Enterprise Threat Shield lets you specify the exact policies that apply to each user, group, or type of workstation; including which technology layers to use, which files to control and how a policy infraction should be enforced.

Flexible content – Enterprise Threat Shield lets you configure rules based on any combination of SurfControl and custom threat databases, as well as multiple media file types, to address the unique threats your organization faces.

Visibility through reporting – Enterprise Threat Shield allows you to report on threats which exist on individual workstations, enabling you to take control of application usage.

Prevention before correction – Enterprise Threat Shield prevents threats from reaching the workstation as policy violations are attempted, dramatically reducing administrative maintenance and eliminating down-time caused by system infection.

Return on investment – centralized deployment and low system and implementation requirements allow you to get policies up and running quickly. Automatic administration and threat signature updates enable hands – free, continuous protection.

• Comprehensive protection – through real-time threat detection technologies and the dynamic Spyware Shield, Messenger Shield, Game Shield and P2P Shield databases.

All users and all drives – protect every endpoint in your organization, no matter where or how it is used.

• Mobile protection – an optional stand-alone agent prevents mobile users in any location from intentionally or inadvertently installing threats or violating use policies.
• Policy enforcement in real-time – even while users are off the network to prevent running or introducting unapproved applications or files.
• Multiple drive protection – prevent threats from entering via the USB, CD or floppy drive, or prevent media files from coming in or leaving via these drives.

• USB protection – prevent writing anything to the USB port to control data loss, but still allow the import of legitimate files without adding to your administrative burden or voiding your warranties.

Multi-layered protection – protect your network and users through all the stages of malicious application introduction and use.

• WriteWatch – stops malicious files as they enter your network before they infect users’ machines, and provides flexible file handling, notification and monitoring options.
• exeWatch – stops existing malicious applications from executing by continuously monitoring file activity in real-time, detecting and terminating malicious applications as they launch, even from removable media.
• FileWatch – scans network files regularly and automatically removes existing malicious applications, regardless of their disguise, with no administrator intervention or additional network clean-up required.
• BrowseWatch – measures the time users spend viewing specific Web sites and pages, and can generate detailed reports on specific Web activity. Complements edgebased Web filtering protection by easily exposing through actual browser use, unknown proxy servers or unauthorized internal sites.

• Granular control – policies can be customized to meet the needs of different users and groups specified using Active Directory or eDirectory (Novell NDS).
• Rule-based administration – specify how you want to manage potentially malicious applications and files, and create rules and exclusions based on the Threat Shield databases tailored to the times, users and groups you want to protect.
• Centralized control – deploy policy changes quickly from a single central point to protect against new threats as they emerge.

Flexible content – Extend SurfControl’s industry-leading Threat Shield databases by creating your own zero-day, business, or industry-specific databases.

• Threat Shield databases – four databases dedicated to spyware, IM, P2P and games contain digital signatures of rogue applications to see through disguise attempts such as file re-naming. Continuously and dynamically updated by SurfControl’s Adaptive Threat Intelligence service.

• Custom Threat Shield – create digital signatures of any application of concern on your network, such as unlicensed software, for customized control and management.

Visibility through reporting – gain complete insight into the risks your organization faces.

• Enhanced visibility – within the Enterprise Protection Suite, BrowseWatch augments SurfControl Web Filter with an extra layer of Web monitoring and calls out important Web surfing details that can only be obtained through the Threat Shield workstation client.
• Flexible reporting – shows the threats that are detected, prevented, cleaned and removed from your network, as well as information on security policy compliance. Easily customizable management, trend and summary reports can be printed directly or exported to other applications.

• Best-of-breed protection – SurfControl Enterprise Threat Shield is one component of a suite of products delivering industry leading protection against Web, e-mail and malicious application threats at the gateway, at the client and in-the-cloud.
• Cross-pollination – all SurfControl solutions leverage shared databases and the SurfControl Adaptive Threat Intelligence service for dynamic protection against emerging threats; no matter how they arrive.

Prevention before correction – Stop threats before they can impact your organization.

• Cost-effective security – incoming threats are stopped before loading onto users’ computers, no matter how they are delivered, to prevent lost productivity and eliminate the cost of repairing damage after the fact.
• Comprehensive protection – spyware, adware, key-loggers, IM/P2P, games, unauthorized movies and music or any other identified company-specific applications, are controlled before they jeopardize security, no matter what route they take to the organization. Threats already on a user’s machine are stopped from running and can be removed entirely.

• Prevention not remediation – to free vital IT resources from damage control and repair tasks.
• Ease of deployment – for an immediate impact on security and productivity.
• Self-healing – to reduce maintenance.
• Tamper-resistant – users can’t defeat protection and policy enforcement measures. Self-healing technology ensures all agents have the latest databases and rules.
• Auto-updating – for hands-free administration.
• Comprehensive music and video management.
• Centralized deployment and policy administration.
• Multiple deployment technologies.
• Tight integration – with Active Directory or Novell eDirectory.
• Rule-based enforcement of policies – based on user, workstation, group or organizational unit, time of day, day of week and other options.
• Comprehensive exclusion component – allows for exceptions by user, group, workstation, organizational unit, application or file.
• Policy violation – option to log only, warn users, or e-mail administrators and / or managers. Customizable warning dialog box for a policy violation.