From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 3 Endpoint Protection and Secure Access
Unlock this course with a free trial
Join today to access over 22,500 courses taught by industry experts.
Antivirus
- [Instructor] We've looked at policy settings previously in regard to anti-malware and here we want to revisit that to talk specifically about the antivirus capabilities of Cisco Amp. One of the great things about Cisco Amp is that it was designed to work alongside any existing antivirus solutions that you may have deployed on an end point. Those could include things like McAfee or Symantec. Amp will not interfere with these solutions and it will allow those antivirus solutions to perform their own analysis and inspections before it takes action. This means that AMP will not interfere with these solutions and will allow these antivirus systems to perform their own analysis and inspection before AMP takes any actions. This means that if you have an existing AV solution that you already prefer, that's in place, the AV can take care of any malware removal on its own. Anything that these AVs might miss can still be detected by AMP which would take any additional steps deemed appropriate.…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
Antimalware6m 8s
-
Retrospective security4m 59s
-
Indication of compromise (IOC)7m 3s
-
Antivirus4m 22s
-
Dynamic file analysis4m 39s
-
Endpoint device management3m 50s
-
Asset inventory6m 43s
-
Mobile device management (MDM)7m 16s
-
Multifactor authentication (MFA)5m 17s
-
Endpoint posture assessment6m 1s
-
Endpoint patching5m 16s
-
-
-