Symantec Offers Threat and Vulnerability Management Program

New consulting service offers real-time global threat intelligence and helps organizations reduce IT risk

CUPERTINO, Calif. - June 28, 2006 - Symantec Corp. (Nasdaq: SYMC) today announced Symantec Threat and Vulnerability Management Program that combines unmatched Symantec security consulting expertise with Symantec global threat intelligence to help customers manage their security posture and prevent incidents before they happen. Symantec Threat and Vulnerability Management Program is a critical component of Symantec Global Services' broader agenda to help customers address IT Risk.

Leveraging Symantec Global Intelligence Network, Symantec Threat and Vulnerability Management Program provides real-time data on vulnerabilities currently being exploited and provides customers with specific guidance to proactively protect their IT environment. Through this unmatched intelligence, customers can proactively map threats against their own system vulnerabilities and prioritize their actions and remediation plans based on their individual risk threshold. This helps to ensure business continuity, higher operational efficiency and availability of systems and staff. Symantec Threat and Vulnerability Management Program also provides metrics to show effectiveness and an auditable trail.

In addition, as businesses are facing more rigorous industry and governmental regulations leading to more robust internal compliance policies, detailed trending and benchmarking among different parts of the organization can be used to demonstrate due diligence in compliance practices. Symantec Threat and Vulnerability Management Program can put the proper processes and controls in place to help customers meet these mandates.

Symantec Threat and Vulnerability Management Program combines a set of consulting best practices derived from years of helping large, complex organizations confront security threats and vulnerabilities in their environments. Symantec is leveraging its vast experience in providing incident response services to existing customers, as well as experience in developing threat and vulnerability management frameworks for large multi-national clients. Symantec built this service around the proven four-phase framework of:

  • Assessment: Assess client's environment to better understand the organization's existing threat and vulnerability framework. Provides a report that summarizes the findings, details the organization's current security posture and its risk implications compared to industry best practices, and offers recommendations to enhance proactive protection and reduce risk.

  • Design: Design a Symantec Threat and Vulnerability Management Program Framework customized to meet the customer's unique business needs, balanced with the client's budget and risk tolerance.

  • Implementation: Implement Symantec Threat and Vulnerability Management Program Framework, customized to the customer's specific needs and existing resources. The underlying technology includes a powerful open-source platform, which combines enhanced notification, a knowledge base of vulnerabilities, malicious code, exploits and fixes, workflow, and a rich reporting engine for meeting compliance goals.

  • Manage: Prepare a resource to act as Threat and Vulnerability Management Officer (TVMO) and position the organization to respond effectively to this role. The TVMO is responsible for coordinating the threat response across the organization. Symantec can train a client resource to act in this role or provide a Symantec Consultant to act as the TVMO on-site.

Availability Symantec Threat and Vulnerability Management Program is currently available through Symantec Global Consulting Services in North America (US & Canada) and EMEA.

About Symantec Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at


Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.