Capabilities and Limitations of Enterprise Antimalware Suites

Standalone antivirus products have matured to encompass a variety of tools for securing endpoints in an enterprise setting. As the threats associated with malicious software increase in sophistication, so do the capabilities of antimalware tools. Understanding the capabilities and limitations of components that form such a suite is critical to selecting the right product and deriving value from it.

My recent article for the Information Security Magazine explains what components are typically incorporated into enterprise antimalware suites, discussing the following:

  • Traditional antivirus protection
  • Capabilities for spyware and rootkit protection
  • Host firewall and intrusion prevention
  • Securing the web browser
  • Safeguarding email communications
  • Cloud aspects of antimalware suites
  • Centralized management capabilities
  • Deployment considerations

Read the full article to understand what to expect from a modern antimalware suite in an enterprise setting. If you’re not a member of the SearchSecurity website, you can scroll past the initial footer of the page to read the full article.

Lenny Zeltser

Updated

About the Author

Lenny Zeltser is a seasoned business and technology leader with extensive information security experience. He presently oversees the financial success and expansion of infosec services and SaaS products at NCR. He also trains incident response and digital forensics professionals at SANS Institute. Lenny frequently speaks at industry events, writes articles and has co-authored books. He has earned the prestigious GIAC Security Expert designation, has an MBA from MIT Sloan and a Computer Science degree from the University of Pennsylvania.

Learn more