3 Replies Latest reply on Mar 28, 2017 10:48 AM by secpro m

    ePO Suite VSE, DLP, App. Control, HIPS...

    avilt

      I am looking for expert advise on deployment stratergy of ePO enpoint products.

       

      We have VSE, Whitelisting, Change Control, Integrity Control, DLP, HIPS and the list goes on.

       

      My understanding is that to a bare minmum, we need VSE, DLP and Whitelisting.

       

      I need some expert opinion on the need for other products assuming I have VSE, DLP and Whitelisting already in place.

       

      Is there any specific guidelines from McAfee (please provide me the link) on the deployment of these products, for example is there anyone who deploys all these products on the same system?

        • 1. Re: ePO Suite VSE, DLP, App. Control, HIPS...
          johnmoe

          avilt wrote:

          ...

          My understanding is that to a bare minmum, we need VSE, DLP and Whitelisting.

          ...

          Those products do different things.  Your "need" depends on what you want to do.

           

          • VSE (VirusScan Enterprise) is the antivirus/antimalware engine.
          • DLP (Data Loss Prevention) helps to protect sensitive information in documents from being transmitted to and/or stored in places it shouldn't be.
          • HIPS (Host Intrusion Prevention System) is a endpoint firewall and network traffic blocking product.
          • The others perform other functions

           

          If you go to the downloads section of the McAfee support site and enter your grant number, you'll get access to all the downloads for what you're entitled to, including documentation.  The product guides, installation guides, and deployment guides answer a lot of questions.

           

          Personally, I'm currently deploying the full Endpoint Security suite, which is pretty much the new version of VSE and HIPS and then some.  I'm just starting testing of DLP (Endpoint and Network), and will be looking at possibly HIPS and/or Endpoint Encryption after that.  No reason that they shouldn't play nicely together that I know of or can see so far.

          • 2. Re: ePO Suite VSE, DLP, App. Control, HIPS...
            avilt

            I need specific guidelines from McAfee experts, on Application Change Control, Integrity Control, HIPS assuming I am already using VSE, Solidcore whitelisting and the systems are not connectd to the Internet.

             

            What are the decision making facotors in deploying/selectiong Application Change Control, Integrity Control & HIPS?

            • 3. Re: ePO Suite VSE, DLP, App. Control, HIPS...
              secpro m

              Avilt,

              Designing Policies and creating schedule tasks is always depends on Org standards / requirements.

              Coming to your question: all these products can be on same system. are your referring client system? Yes, you can install all products on one endpoint. Recently deployed all these products on desktops which are not connected to internet.

               

              My suggestion or recommendation is - Follow Best practices of DLP, HIPS & Application control