Professional Documents
Culture Documents
Security management requires cumbersome juggling between tools and data. This puts
the adversary at an advantage by offering more time to exploit the gap not seen between
the tools and do damage. In addition, the cybersecurity workforce is limited and needs to
be empowered to manage cybersecurity complexity. The McAfee® ePolicy Orchestrator®
(McAfee ePO™) management platform removes the time-consuming and potential human
error effort and inspires those responsible to manage security quicker and with higher
efficacy.
ESG research shows that 40% of organizations use 10 to McAfee Products Third-Party Products
25 tools, while 30% use 26 to 50 tools to manage billions McAfee Endpoint Protection Guidance Software: enCase
(Threat Prevention, Firewall, Web Enterprise
of new threats and devices. This diversity of product Control)
use creates complexity and multiplies the operational McAfee Drive Encryption Avecto: Privilege Guard
payoff of a unified management experience—from McAfee File and Removable AccessData: AccesData
installation through reporting. McAfee embraces these Media Protection Enterprise
requirements with a “Together is power” approach to McAfee Active Response Autonomic Software: Power
Manager, Patch Manager
security management that allows you to consolidate
McAfee Management for Xerox MFP
the sprawl while protecting the breadth of your Optimized Virtual Environments
(McAfee MOVE)
assets, supporting threat intelligence, managing open
McAfee Data Loss Prevention DXL
source data, and integrating third-party products. (McAfee DLP)
McAfee provides centralized command and control for McAfee Policy Auditor
compliance and management across a range of security McAfee Enterprise Security
products. You can quickly pivot across products to find Manager
the critical data and take the necessary policy action. McAfee Threat Intelligence
Exchange
The McAfee ePO console also allows you to invest in
McAfee Application Control
next-generation technologies and integrate them with
McAfee Cloud Workload Security
existing assets within a single framework.
McAfee Advanced Threat
Defense
McAfee Content Security
Reporter
McAfee Database Activity
Monitoring
Use Case Examples: How the McAfee ePO Console Creates Centralized Management
of Security Products
Product and Technology Sample Centralized Management Use Case Benefit
McAfee ePO McAfee Endpoint Security discovers a known malicious file on Quick containment of a bad endpoint
an endpoint. The McAfee ePO console sets a stricter policy
McAfee Endpoint Security
on the endpoint to quarantine it. This is done in one common
management interface.
McAfee ePO McAfee Enterprise Security Manager detects significant data Automatic data loss policy
exfiltration on an endpoint and tags it in the McAfee ePO enforcement
McAfee DLP
console. The McAfee ePO console applies data loss protection
McAfee Enterprise Security Manager policies to block the data and advise the user that this is not in
compliance.
Integration Examples
Product and Technology Integrated Use Case Benefit
McAfee ePO McAfee Endpoint Security flags a suspicious host. The McAfee Increased proactive protection
ePO console can trigger additional scans. This is communicated
McAfee Endpoint Security
to Cisco ISE via PxGrid and the DXL exchange (the McAfee
DXL ePO console). Cisco ISE can isolate the host until it is deemed
acceptable.
Cisco Identity Service Engine (ISE)
Cisco PxGrid
Avecto Defendpoint Deploy and manage the industry-leading, privilege management Reduction in complexity
solution, Avecto Defendpoint, from McAfee ePO. Avecto
McAfee ePO No additional infrastructure, lowering
Defendpoint configuration changes are informed by McAfee
TCO
DXL Threat Intelligence Exchange application reputation data.
Privilege access changes based on
McAfee Threat Intelligence Exchange
threat intelligence
Rapid7 Nexpose McAfee ePO shares assets list to Nexpose. This enables you to Reduce complexity
gain an understanding of risk posture from your McAfee ePO
McAfee ePO Gain a comprehensive and reliable
console and allows you to set policy accordingly. Vulnerability
posture and prioritize actions to
DXL data is shared with the DXL community of vendors.
minimize risk from one dashboard
Check Point NGTX This integration facilitates bi-directional and real-time Decrease time to detect
intelligence sharing between the network and endpoints.
Check Point NGTP Block and remediate attacks
Events are shared with the DXL community.
McAfee ePO
DXL
McAfee Active Response
McAfee Enterprise Security Manager
Organizations with integrated platforms are better protected and achieve faster response times than their
counterparts without integrated platforms. “The most powerful
endpoint management
Integrated Organizations Not Integrated Organizations
Suffered less than five breaches last year 78% 55%
platform on the
Discovered threats in eight hours 80% 54% market today, McAfee
2016 Penn Schoen Berland ePolicy Orchestrator,
this product is the
underlying management
Extensible Workflows Streamline Processes Common Use Cases tool for all of the
The McAfee ePO database provides flexible, automated ■■ Save time and eliminate redundant and labor-intensive company’s security
management capabilities so you can rapidly identify, efforts by scheduling security compliance reports to products, and it offers
manage, and respond to vulnerabilities, changes in meet the needs of each stakeholder.
the power and flexibility
security postures. and known threats from single Easily integrate the McAfee ePO console into your that enterprise buyers
■■
console. You define how the McAfee ePO console should existing business processes and functions by
direct alerts and security responses based on the type leveraging its robust set of APIs to gain more insight
desire. The security
and criticality of security events for your environment and accelerate workflows (for example, integrate with capabilities are broad
and your policies and tools. To support development ticketing systems, web applications, or self-service and tightly integrated
operations and security operations, the McAfee ePO portals). through a common
platform allows you to create automated workflows ■■ Maintain your security posture by deploying agent and policy engine and
between your security and IT operations systems to
security solutions as new machines are added to your
quickly remediate issues. Use the McAfee ePO console intelligence stream.”
corporate network by syncing the McAfee ePO console
to trigger remediation actions by your IT operations —Forrester Wave: Endpoint
with Active Directory.
systems, like assigning stricter policies. Leveraging its Security Suites 2016
web application programming interfaces (APIs) reduces
manual effort.
Secure Across Your Organization with the Reduce complexity and streamline processes
McAfee ePO Console ■■ Ability to get up and running quickly with guided “McAfee ePO software
Centrally manage security configuration, automated policy management work stands out compared
■■ Distinctive single console for centralized management streams, and predefined dashboards to other solutions. It is
and visibility into up to hundreds of thousands of ■■ Tag-based policy assignment to precisely target a one-stop shop for our
nodes across the enterprise application of predefined security profiles to individual
endpoint protection.
Open framework for broad security management of or groups of systems based on their business roles or
I can see everything I
■■
2821 Mission College Blvd. McAfee and the McAfee logo, ePolicy Orchestrator, and McAfee ePO are trademarks or registered trademarks of McAfee, LLC or its subsidiaries in
Santa Clara, CA 95054 the US and other countries. Other marks and brands may be claimed as the property of others. Copyright © 2017 McAfee, LLC. 3718_0118
888.847.8766 JANUARY 2018
www.mcafee.com