About SEP Mobile & Microsoft Defender ATP Integration
SEP Mobile& Microsoft Defender ATP Integration
Gain complete visibility and protect against complex threats across all enterprise endpoints, including mobile – quickly and at scale.
Enterprises often use endpoint detection and response (EDR) solutions to combat advanced, persistent and unknown threats to traditional endpoints across an organization. In recent years, with the upsurge of mobile usage in enterprise, advanced and zero-day attacks are also increasingly targeting mobile operating systems, necessitating EDR for modern endpoints as well.
Symantec Endpoint Protection Mobile (SEP Mobile), an industry-leading mobile threat defense solution, integrates with Microsoft Defender Advanced Threat Protection (ATP) to give customers complete visibility over all security events across all endpoints in their organization, including mobile. Microsoft Defender ATP is a unified platform for preventative protection, post-breach detection, and automated investigation and response. Through integration with Microsoft Defender, enterprises can leverage and streamline SEP Mobile’s built-in mobile EDR capabilities via Microsoft Defender ATP, enabling security teams to effectively respond to advanced and persistent threats that exploit mobile vulnerabilities. Customers benefit from smart, on-device protection against a broad range of mobile threats, across app, device, network and content-based attack vectors.
After a quick and streamlined integration process, SEP Mobile sends device inventory and incidents to Microsoft Defender ATP. In the Microsoft Defender ATP console, customers can then seamlessly move between alerts from both Microsoft Defender and SEP Mobile that are generated from across the user’s devices. Through the Microsoft Defender console, administrators can see all alerts on a single screen, enabling greater visibility into the scope and impact of the breach.
Why organizations should care about mobile security
Mobile devices are always on, always connected and are often used to access both personal and corporate data, making them a particularly attractive target for hackers. As an example, in Q1 2019, symantec-mobile-threat-defense-snapshot-mobile-security-incidents-q1-2019 and vulnerabilities made headlines due to their harmful impact on data security and user privacy. Major stories included: Apple’s FaceTime bug which allowed hackers to listen in on private conversations; the discovery of a new variant of the symantec-discusses-securing-private-mobile-app-data-cloud which exposed over 200 million data records including corporate financial documents, medical records, and customer invoices; malicious actors us-apple-piracy-idUSKCN1Q3097 to distribute hacked versions of popular apps to enterprise employees, and Amazon CEO
According to msi-2019-report.pdf, enterprises are becoming more and more concerned with the threat to mobile, with 41% of organizations reporting that mobile devices were their biggest cyber security challenge.
Extending traditional security solutions to modern endpoints
With organizations increasingly adopting Bring Your Own Device (BYOD) practices, mobile is becoming the preferred work platform for enterprise. Yet security teams often lack visibility, much less control, over their mobile threat landscape. When it comes to protecting traditional endpoints such as desktops or laptops, organizations have used security solutions such as vulnerability management, endpoint protection (EPP), data loss prevention (DLP), and EDR. These solutions can – and should – be used to protect modern endpoints as well.
SEP Mobilesecures mobile devices from risky apps, network threats, and OS vulnerabilities, extending valuable solutions designed for traditional operating systems to mobile devices. This includes: anti-malware, network protection, DLP, vulnerability management, cloud access security broker solutions, EDR, and more – providing multi-layered protection against the entire range of mobile threats and keeping enterprise resources safe. The integration with Microsoft Defender ATP is a natural evolution of our protection capabilities.
SEP Mobile’s predictive technology uses a layered approach that leverages the largest crowdsourced threat intelligence network in the world (Symantec Global Intelligence Network), in addition to both device- and server-based analysis, to proactively protect against known and unknown threats including malware, network connection and content attacks, app risks, and OS vulnerabilities.
Our solution is unmatched in:
- Real-time, proactive protection:Organizations can leverage the most diverse set of protections in the MTD market, including on-device actions and smart VPN utilization. Examples: Corporate Wi-Fi protection, malware defense, removal of malicious/unwanted apps, malicious profile blocking and more.
- Enterprise-grade integrations:SEP Mobileoffers the greatest number of security integrations in the industry, enabling automated and streamlined enforcement of compliance policies and protection actions. This includes integrations with various Microsoft products: Microsoft Intune, Azure Active Directory, Azure Sentinel, and Microsoft Defender ATP.
- Deep mobile app analysis:Security teams can protect against the full range of app risks – malware, vulnerabilities, unwanted behavior – with a powerful, fully-integrated app analysis engine based on technology from Appthority, the leader in enterprise-grade app vetting.
SEP Mobile’s threat detection and protection is continuous, functioning with or without an Internet connection, and without negatively impacting privacy, productivity and battery life.
Learn more about how
SEP Mobilecan protect your sensitive data. LP=5019?cid=70138000000zYZ5AAM.
Symantec is a member of the Microsoft Intelligent Security Association (MISA), an ecosystem of intelligent security solutions that help organization defend against increasingly sophisticated cyber threats.