LANDesk^® Security Suite Key Features

Integrated Endpoint Security:

NEW LANDesk Personal Firewall —Limits access to authorized networks or IP addresses to ensure increased system protection and dramatically reduce the potential for effective system attacks
NEW Location-aware policies—Preserve productivity and reduce the chance of data loss and infection with dynamic policies that adjust security settings—including application control, anti-malware configuration, and removable storage restrictions—based on the environment a selected machine is in
Application and device control—Uses a single, integrated agent that monitors, protects, and controls application and device usage on the endpoint

Comprehensive assessments—Help you enforce alignment with compliance standards such as Payment Card Industry Data Security Standards (PCI DSS), SANS, National Institute of Standards and Technology (NIST), National Security Agency (NSA), Federal Information Security Management Act (FISMA), and more
Robust reporting capabilities—Include trend graphs and security policy and spyware reports
LANDesk Network Access Control (optional)—Works with LANDesk Security Suite to prevent compromised or noncompliant systems from connecting to the network until they have been fully remediated

USB encryption policies—Control use of mass storage devices by making them read-only, blocking them entirely, or forcing encryption
Advanced device management—Oversees access to drives, modems, USB and communications ports, bridging networks, and wireless channels such as 802.11x and Bluetooth
Shadow-copy functionality—Monitors files copied to peripheral devices to prevent data leakage on CD-ROMs, DVDs, and other portable media

Host-based intrusion prevention system (HIPS) functionality—Adds zero-day and stealth-rootkit threat protection with behavior-based execution control and blocking that prevents malicious attacks on the host
Whitelisting and blacklisting—Allows only authorized programs to run and stops unauthorized or prohibited applications—including on systems unconnected from the network—even if users rename the file
Seamless integration—Assures that application control features work in tandem with new personal firewall features
Group and user-level restrictions—Offer greater control of who can access specific applications

Patch management—Automatically identifies operating system and application patch needs using LANDesk’s comprehensive vulnerability assessment and patch database; also shows what vulnerabilities a patch might introduce by revealing which patches depend on others
Custom settings—Let you control which vulnerabilities and newly available definitions you receive alerts on; also lets you build custom patch packages to address any detected vulnerability and bring systems into compliance with company or industry standards
LANDesk Targeted Multicast and Peer Download technologies—Achieve a fully patched state across the enterprise more quickly and with minimal impact to the network
Standard, custom, and high-frequency scans—Provide increased flexibility in controlling what you scan for and how often you scan for it
Hands-off deployment—Automates the pilot and rollout phases of vulnerability assessment and patch deployment

Advanced protection—Eases network burden and centralizes protection against spyware, adware, Trojan horses, keyloggers, and other malware—including for Microsoft Exchange Server 2007—in a single LANDesk console
Award-winning LANDesk® Antivirus (optional)—Integrates with LANDesk Security Suite to protect systems from all forms of malware, including stealth rootkits

Third-party anti-virus control—Manages anti-virus solutions from McAfee, Norton, Sophos, Symantec, and Trend Micro
Microsoft Windows firewall management—Identifies unprotected wired and wireless machines, and enables and configures Windows Vista® and Windows XP firewalls
Custom configurability—Lets you set up one firewall for all systems or customize firewall configurations for individual systems or groups of systems