The SEP manager updates are incremental, and smaller than the ones downloaded from the Live Update server.To dive deeper into SEP policy configuration, have a look at these articles on application control rules, location awareness, Group Update Provider and even best practices for Quick Books. Unlike antivirus, IPS scans network traffic and identifies methods used to break malicious files into your network.Also, tune the scheduling frequency down to one hour.

There is a virus on your network, you need to collect logs on an infected computer, or respond to a virus in the history log. Here is a great list of best practices for all of the above.

In some cases, you might need to remove a safe file from detection or remove a w32. Using Symantec on a Windows Azure, Amazon Work Spaces and other virtual endpoint?

For Symantec 12.1, you want to isolate VDI client groups from policy changes to allow scheduled scans defined on different days or off hours.

Update virus definitions using the Live Update policy which will randomize client to SEP Manager communications and optimize I/O loads when they’re not updating simultaneously.

Make sure you review the benefits of upgrading to the latest version of SEP 12.1.x, and check out Symantec’s Help diagnostic tool to determine if your system meets the minimum requirements.

There are a lot of moving parts to admin work, so here is a list of Symantec’s guides to content revision configuration, server certificate updates, GPO, testing authentication, central deployment, Live Update, and clients with both SEP and Data Loss Prevention: If your users do not use a VPN, you should change the Live Update policy setting to use the default Symantec Live Update server – this allows remote clients to update any time they connect to the Internet.

Scan the headers below for best practices in all areas of SEP and lots of links to helpful guides, as well as a way to get a free analysis of your SEP environment at the bottom using Symantec’s Best Kept Secret.

Installation is a big topic, so I encourage you to read Symantec’s Top 10 SEP installation best practices.

There are twelve best practices for security you should consider with SEP, I will list the top three here and link to the rest.