1. [Name / Title] [Date] Effective Threat Protection Strategies

2. Agenda 1.The Business Challenge 2.Changing Threat Landscape 3.Effective Threat Protection Strategy 4.The Four Principles 5.Getting It Right

3. Agenda 1.The Business Challenge 2.Changing Threat Landscape 3.Effective Threat Protection Strategy 4.The Four Principles 5.Getting It Right

4. The business challenges Increase in usage of internet means greater exposure to threats Growing number of threats from cybercriminals Costs of security breaches Protecting business continuity Maintaining regulatory compliance

5. Organizations are still getting infected Source: Ponemon Institute Security, Mega trends survey 2009

6. The cost Average cost of a data breach $204 per record compromised Average loss due to security incident $234,244 per respondent

7. Agenda 1.The Business Challenge 2.Changing Threat Landscape 3.Effective Threat Protection Strategy 4.The Four Principles 5.Getting It Right

8. Changing threat landscape The paths to threat exposure are also multiplying: Social network use by businesses, customers and employees Infected web pages Email and IM spam

9. Regulatory and compliance risk Comply with a growing body of government regulations and industry standards, such as: National and state regulations Payment Card Industry Data Security Standard Health Insurance Portability and Accountability Act

10. Agenda 1.The Business Challenge 2.Changing Threat Landscape 3.Effective Threat Protection Strategy 4.The Four Principles 5.Getting It Right

11. Effective threat protection strategy Balancing business needs with threats and regulations Protecting against the threats Enabling your business to operation efficiently Four key principles 1.Prevention 2.Proactive 3.Performance and productivity 4.Simplicity

12. Agenda 1.The Business Challenge 2.Changing Threat Landscape 3.Effective Threat Protection Strategy 4.The Four Principles 5.Getting It Right

13. 1. Prevention Close the security gaps by addressing the sources of infection, preventing threats from getting in, and creating a secure IT environment Look at implementing interlocking layers of protection Firewall - secure the computers perimeter Application Control - prevent unwanted applications Device Control – allow on clean authorized devices Network Access Control – ensure computers comply with policy Email filtering – keep email free of spam and malware Web security - protect users from accessing malicious websites Patch management – keep computers protected with latest patches

14. 2. Proactive Protect against previously unseen attacks before a signature is available Technologies that deliver: Behaviour-based detection – stopping code from performing suspicious actions Host-based Intrusion Prevention Systems (HIPS) Buffer Overflow Protection Systems (BOPS) Cloud-based reputation protection – providing latest information online Live Anti-Virus Live URL Filtering

15. 3. Performance... and productivity IT security should help protect productivity Users will turn off security software if it slows down the performance A security solution should not get in the way of business itself Balance protection with productivity

16. 4. Simplicity Security safeguards have to be simple and manageable to get the job done Understand the incremental benefit over the security already in place Assess the effect of proposed threat protection measures Do as much as you can with the smallest number of products Avoid products that require an expert to manage Account for the cost of maintaining security products

17. Agenda 1.The Business Challenge 2.Changing Threat Landscape 3.Effective Threat Protection Strategy 4.The Four Principles 5.Getting It Right

18. Security solutions with the greatest business flexibility, least operational effort and lowest investment Comprehensive security & control Simplicity & manageability Pre-packaged intelligence Unrivalled support Security that frees IT managers to concentrate on their business. The Sophos Approach

19. Comprehensive security and data protection

20. Simplicity and manageability Simplification Manageability Best security with least investment Single agent Widest platform support Integrated management Intelligent policy updating Appliance monitoring Automatic protection Easy to use management Integrated data protection Remote monitoring Anonymizing proxy detection Delivers consistent protection Puts our expertise in your hands Reduces agent pollution Eliminates end user impact Ensures lowest operating costs

21. Pre-packaged intelligence from SophosLabs™ Unrivalled visibility Integrated expertise Automated analysis Monitored regulations Integrated expertise Automated analysis Monitored regulations Reduces need for specialist security expertise

22. Penalty backed SLAs Unrivalled support and services “Overall, Sophos, which places customer support as the cornerstone of its business, was the best. We were greatly impressed by the troubleshooting skills of its technicians, whose knowledge about their product and Windows is solid.” Infosecurity Magazine Scorecard: AV Vendors Tech Support, Ed Skoudis "I have always received outstanding attention from your support team.” Sal Serafino, Cold Spring Harbor Laboratory, US "Sophos has continually demonstrated dedication to both technical support and customer service." Neil Barnes, calfordseaden, UK 24 / 7 support as standard Exceptional service levels Our staff in our offices Breadth of knowledge, cross platform issue resolution Worldwide coverage Direct access to experts speaking local language Enhanced support services to maximise ROI

23. Summary 1.Review your current security against your business needs 2.Deploy layers of protection to close the security gaps 3.Measure each technology choice against the four principles