Information Security, Data Loss Prevention, Compliance, and Endpoint Protection

Executive Summary

Overview
Symantec is a global leader in infrastructure software, providing security, storage, and systems management solutions to help consumers and organizations secure and manage their information-driven world. The company helps customers protect their infrastructure, information, and interactions by delivering software and services that address risks to security, availability, compliance, and performance. Headquartered in Mountain View, California, Symantec has operations in more than 40 countries.

Barriers
Organizations of all sizes are faced with the challenge of securing and managing ever-increasing amounts of information—the lifeblood of modern business. Like its own customers, Symantec needed to secure and protect its business critical data while ensuring compliance with external and internal standards, eliminating risks to information, managing complexity, and reducing the time and cost of executing day-today processes in these areas.

The Solution
Seeking to protect the company’s information and infrastructure assets and better manage essential security tasks, Symantec’s information technology (IT) organization undertook a series of software implementations to address various aspects of information security and risk management. By leveraging the company’s own data management technologies and mapping internal processes and controls to international security standards and best practices, the team helped ensure that Symantec’s information security needs will be met on an ongoing basis. The solutions address the following areas: IT compliance (Symantec Control Compliance Suite); data loss prevention (Symantec Data Loss Prevention); messaging security (Symantec Brightmail Gateway and MessageLabs Hosted Email Security); endpoint management (Altiris Notification Server and Altiris Deployment Solution); and endpoint security (Symantec Endpoint Protection).

Benefits
By drawing on its own portfolio of data and messaging security, compliance, and systems management solutions, Symantec has realized substantial business value. Alchemy Group conducted a Total Operational and Economic Impact (TOEI™) analysis and quantified realized and projected business value from August 2008 through December 2011 in the following areas:

• Server and Operating System IT Labor Productivity Gains: $5,397,334 in labor productivity savings associated with recurring server configuration and domain audits, operating system audits, and Sarbanes–Oxley-related audits
• Data Loss Prevention Labor Savings: $6,999,600 in labor costs avoided with automated data loss prevention event management
• Spam Email Storage Cost Avoidance and IT Labor Productivity Gains: $40,685,853 in data storage cost avoidance and IT and end-user productivity gains from removal of spam email
• Automated Software Package and Deployment IT Labor and End-User Productivity Gains: $1,081,440 in IT and end-user productivity gains through automated software package distribution and emergency patch deployments
• Endpoint Protection IT Labor Cost Avoidance and Server Maintenance Savings: $1,210,959 in IT maintenance and labor cost savings associated with security server retirements

For more information on Alchemy Group or to download this document, go to http://www.alchemygroupinc.com/category/research/bva/