Symantec Introduces New Security Information Management Offering

Market Wire, January, 2007

Symantec Corp. (NASDAQ: SYMC) today announced Symantec Security Information Manager 4.5, providing customers the foundation of a solid IT governance and compliance program by automating the incident management lifecycle. Symantec Security Information Manager assists customers in mitigating IT risk by reporting on the effectiveness of IT security controls and enabling IT administrators to quickly respond to security threats and incidents in network environments.

Symantec Security Information Manager 4.5 delivers integrated event archiving and management, improved compliance reporting, and strong administration of enterprise deployments. In order to improve compliance efforts, customers are able to build a repeatable and documented incident response program and are provided built-in report templates that can be customized, scheduled, and distributed automatically.

"Symantec Security Information Manager gives us a comprehensive view of security across our entire network environment, including third-party security solutions running on multiple platforms," said Adam Gray, Chief Technology Officer, Novacoast. "By centralizing and correlating data from every node in our enterprise, we're able to detect and respond to problems more easily and quickly."

Symantec Security Information Manager 4.5 provides customers long-term retention of logs for forensic and compliance mandates. In order to lower total cost of ownership, numerous new storage options are now available including: DAS, SAN, and NAS. Symantec Security Information Manager also provides an infrastructure monitoring user interface and user management through Active Directory integration and roles management.

"Only Symantec can provide an inclusive view of threats in an enterprise environment by correlating host and network activity with a unique perspective of the global threat landscape through integration with Symantec's Global Intelligence Network," said Arshad Matin, vice president, compliance and security management, Symantec. "Customers are able to maintain a low-risk profile with a closed-loop problem management system, workflow integration, and integrated security content from Symantec's global expertise in security response."

By including out of the box content for risk mitigation and remediation, Symantec Security Information Manager helps to improve staff efficiency. Security operation center (SOC) analysts are able to efficiently respond to the most critical security threats in customer environments. Customers are offered an automated workflow through built-in ticketing or enterprise connectivity to helpdesk solutions. Symantec delivers comprehensive coverage of customer environments by offering data collection from more than 100 event sources that ensure critical assets are covered.

Symantec Security Information Manager was recently qualified as a leader in "The Forrester Wave: Enterprise Security Information Management, Q4 2006" report. "Symantec has a solid current offering, especially for analysts in the SOC, plus a strong vision for where their SIM solution should fit within the IT ecosystem," writes Paul Stamp, senior analyst, Forrester. According to the report, companies bought security information management to: identify the most serious issues that needed a response, investigate policy violations and security breaches, get a view into the organization's IT compliance posture, and demonstrate the effectiveness of the security program.

Through automation of the incident management lifecycle, customers are able to efficiently address both security and compliance mandates. Symantec Security Information manager allows customers to identify, prioritize, respond, and review incidents.

--  Identification - Correlating millions of security events into a
    manageable number of critical security incidents.
--  Prioritization - Escalating the priority of critical incidents through
    built-in rules and real-time content updates from Symantec's Global
    Intelligence Network.
--  Response - Providing closed loop workflow and ticketing integration to
    ensure security incidents are assigned and managed.
--  Review - Enabling affordable and scalable, long-term storage and audit
    review of all security events.
    

Licensing and Availability

Symantec Security Information Manager 4.5 is available in an appliance form factor through Symantec's worldwide network of value-added resellers, distributors, and systems integrators. Organizations seeking a reseller or distributor should contact Symantec at http://enterprisesecurity.symantec.com .

About Symantec

Symantec is a global leader in infrastructure software, enabling businesses and consumers to have confidence in a connected world. The company helps customers protect their infrastructure, information, and interactions by delivering software and services that address risks to security, availability, compliance, and performance. Headquartered in Cupertino, Calif., Symantec has operations in 40 countries. More information is available at www.symantec.com .