Tuesday, September 30, 2014

Sophos Enterprise Console Policies


The Sophos Enterprise Console allows administrators to create computer groups and assign policies to groups. As of September 2014, the following computer groups are defined in the Sophos Enterprise Console:

- Pepperdine (the Default group. The majority of Windows and Mac computers belong to this group)
- InfoSecOps (computers used by Information Security staff members)
- No Tamper Protection (computers that do not have the Tamper Protection policy set)
- Unassigned (computers that do not have a default group).

There are policies covering the following areas:

- Updating (Primary and Secondary Server information)
- Antivirus and Suspicious File scanning
- Firewall (the Default is "allow all traffic"; that is, the Sophos Firewall is not configured)
- Tamper Protection (password to allow removal of Sophos from the client computer)

More details about the policies are in this document:
https://docs.google.com/a/pepperdine.edu/spreadsheets/d/1RewL2Of9L8v6zUf9ScaL_8SJ5oJDxbwOhxMYvOhfTjQ/edit#gid=0


Tuesday, September 23, 2014

The Who, What, When, Where, and Why of Endpoint Protection

1. Who?
Endpoint Protection is the name of Pepperdine's antivirus/antimalware solution.

2. What?
Endpoint Protection, powered by the Sophos Endpoint Control Suite, covers antivirus, antimalware, and web reputation policies for Pepperdine-owned computer systems. Endpoint Protection is administered via the Sophos Endpoint Console.

3. When?
Endpoint Protection replaces the Trend Officescan software that was installed on Windows computer systems. Endpoint Protection now covers both Windows and Mac computers. The transition phase from Trend Officescan to Sophos concludes at the end of October, 2014.

4. Where?
Endpoint Protection is available to all Pepperdine-purchased computer systems. This includes the main campus at Malibu as well as satellite and Grad campuses.

5. Why?
Along with antivirus and antimalware solutions, the Endpoint Protection suite offers application and data control, web control, tamper protection, and encryption services. Endpoint Protection is also part of the suite of tools covering server protection and the anti-spam engine.