EMEA Partner Led Consulting Service Offerings EMEA Partner

EMEA Partner Led Consulting Service Offerings EMEA Partner Led Consulting 1

Straightforward Medium Strategic/ Complex Implementation Type EMEA Symantec Partner Led Consulting engagement model EMEA Partner Led Consulting 2

Advisory Services EMEA Partner Led Consulting 3

Assessment Service Catalogue Security and Compliance Information Management Storage and Availability Security Architecture Review De-duplication Assessment Storage Supply Chain Analysis Malicious Activity Assessment Archiving Assessment Baseline IT Continuity Ass. Vulnerability Ass. & Pen Test Next Gen. Data Prot. Ass. ITDR Program Mobile Security Assessment Information Storage Assessment DLP Risk Assessment SOC Assessment and Design Future State Architecture Cloud Readiness Assessment INFORM Risk Assessment EMEA Partner Led Consulting 4

Security Operations Center Assessment and Design Gap analysis of the customers Security Operations Center VS our best practice guidelines Define the posture of the actual SOC’s Security Services levels, evaluating the technological and the organizational aspects Evaluating the actual requirements/controls, in order to measure the current level of security according to the CMM (Capability Maturity Model) Execute a Gap Analysis against Symantec SOC MS model Define a Security Roadmap to improve the SOC Services and to prioritize the security Investments Provide a executive summary representation useful for Top Management EMEA Partner Led Consulting 5

Next Gen Data Protection Assessment The assessment provides a clear insight into the effectiveness of an existing backup and recovery service. Being based on qualitative and quantitative information, it delivers a broad and balanced view, from both process and technology perspectives. The assessment measures the maturity of the current service in terms of quality of delivery, technical architecture, best practice configuration and on-going management and support. It will identify areas for improvement and potential cost savings. The review is conducted using a combination of key stakeholder workshops and data gathering tools, resulting in a final presentation of findings and recommendations. EMEA Partner Led Consulting 6

ITDR Program Gap analysis of the customers understanding of IT changes to meet IT continuity requirements High-level designs for each IT recovery class, high-level recommendations on IT process/IT organization improvements Selection from three alternative strategies High-level quantified business case for every strategy to justify selecting the right strategy Roadmap for IT transformation for selected strategy EMEA Partner Led Consulting 7

Security Architecture Review Gap analysis of the customer’s enterprise security deployment VS our best practice guidelines The Enterprise Security Architecture Review (ESAR) has been designed as a service engagement that will rapidly enable clients to determine whether their current Security Architecture, Risk Management, product portfolio, Security team make-up and supporting processes It will also determine whether clients have correctly provisioned their security infrastructure with the clients existing solutions and to highlight any weaknesses or gaps in the client’s infrastructure. The Symantec consultant will assist with providing qualitative data to determine how effective the products are from the Vendor, while mitigating the risks of unplanned downtime EMEA Partner Led Consulting 8

Malicious Activity Assessment Assess volume of malicious activity in the network and the impact to the organization. Provides the data needed to assess risk exposure and identify areas for improved protection Provides detection capabilities that give you early warnings and details on emerging and potential threats including target and attacker IPs. Gives you the ability to inspect for botnets—both dormant and active—and take rapid remediation action on infected clients that may be participating in botnet activities. Allows you to detect compromised endpoints on your network with behavioral modeling and fingerprinting. Provides detailed reports giving you the data needed to assess risk exposure and identify areas for improved protection. EMEA Partner Led Consulting 9

Vulnerability Assessment and Penetration Testing Gap analysis of the customers existing VA processes and tools VS our best practice guidelines The Vulnerability Assessment Service (VA) has been designed as an entry level, low cost service engagement that will rapidly enable clients to determine whether their current VA methodology and threat modeling support processes correctly determine the relevance (using CVVS or NVD scoring), criticality and deployment capability of vendor released security patches. EMEA Partner Led Consulting 10

Mobile Security Assessment • Holistic approach covering 3 perspectives • Governance • Intelligence • Infrastructure • Across 15 core elements • Provides a 360 o view of your mobile security capabilities Identify security issues within application source code through automated and manual review Focused on identifying issues with authentication and authorization, data validation, session management, encryption, auditing and logging, and business logic Can be performed in conjunction with a penetration assessment to provide a deeper view of potential vulnerabilities Usually conducted during the development or testing phases of the software lifecycle EMEA Partner Led Consulting 11

DLP Risk Assessment that allows organizations to quantify and qualify their risk of data loss The Symantec Data Loss Prevention Risk Assessment identifies areas of Very High, Medium, and Low risk of data across endpoint, network, and storage systems by data type, based on your evaluation of potential severity and your actual frequency of data loss. It will also determine whether clients have correctly provisioned their security infrastructure with the clients existing solutions and to highlight any weaknesses or gaps in the client’s infrastructure. Our consultants team helps to create and implement data security policies to discover, monitor, and protect confidential data wherever it is stored or used EMEA Partner Led Consulting 12

De-duplication Assessment Reviews an existing backup environment to assess the potential impact of introducing deduplication technology. Staring from an initial review of the hardware and software infrastructure along with the customer data profile, a value based assessment of deduplication will be performed. This will include: • Assessing all solution options (client, media server and target based deduplication) • Defining a preliminary deduplication based solution. • Quantifying potential cost savings. • Assessing impact on existing Server, Storage, LAN, SAN and WAN infrastructures. • Defining a potential migration plan. • Final Presentation of Recommendations and Findings. EMEA Partner Led Consulting 13

Archiving & e. Discovery Assessment Determines the projected benefits of introducing archiving and e. Discovery as part of the information lifecycle management • • With data out a too , and you end l to cont n cultu o contro up with rol the li f IIG p re, this a l. Regar perpetua ecycle o f Use roduct su lways eq dless of y l data gr your i cont t to enfo ite is at uates co our corp owth i s r the e ol polici rce your t’s heart t. Syma orate n s a nviro es. R educ afe harb policy e tec nme o e cos n nt. ts an r and dat gine. d cle a an u p The assessment utilizes a field-proven methodology developed by Symantec to uncover gaps relating to information lifecycle management, including (but not limited to): – demonstrating and quantifying the benefits & costs of the Symantec solutions for archiving, e. Discovery & retention management – reviewing litigation and compliance risk around email, and comparing current practices to industry best practices. – discussing the data lifecycle and policy enforcement, followed by e. Discovery preparation, and finally by costs of unrestricted data growth. – assessing your business needs, and helping you get your archiving and e. Discovery project up and running. The assessment is conducted using tools to collect specific data inputs from Customer environment, including (but not limited to) Exchange Mailbox Analyzer, File System Analyzer, Sharepoint Analyzer, etc. EMEA Partner Led Consulting 14

Information Storage Assessment Which servers are consuming data from which arrays? Management Console Active Directory Indexers Collectors Which users are creating and using which files? – A comprehensive assessment service covering block-based and file-based data stores. – Enables better-informed information lifecycle policy decisions – Facilitates implementation of chargeback models – Makes users accountable for the storage they consume EMEA Partner Led Consulting Un-provisioned Clients File Servers Overhead Un-claimed Un-consumed Physical Logical Over-provisioned Claimed Consum ed Misused Host Usage Storage Team Server Team DB / App Admins App Usage Effectively Utilized End Users 15

Baseline IT Continuity Assessment Leverages the standard DRA POC combined with Operational Risk assessment workshop to determine technical and operational risks to successful DR. Rapid workshop/ interview and tool-based review of the current IT Continuity (ITC) Capabilities. Will rapidly enable clients to determine whether their current HA and DR technology and supporting processes will operate as designed in the event of a failure. It will also determine whether clients have over provisioned recovery infrastructure and provide quantitative and qualitative data to determine how cost and effort may be taken out of the existing HA and DR infrastructure while still mitigating the risks of unplanned downtime. EMEA Partner Led Consulting 16

Storage Supply Chain Analysis Leverages CCS combined with operational assessment workshops to identify opportunities to optimize clients storage and data protection infrastructure. Symantec helps clients to transform storage processes and operations in to a more efficient and cost effective service. To understand the client's storage service requirements, Symantec consultants start by reviewing the organization's current storage architecture, software tools, and operational model. With this information, they can help identify any gaps between the current capability and best practices, and thus help define a strategy that will more closely align storage services with business and IT requirements, while optimizing the delivery of those services. Using Symantec storage management solutions as tools, (Command Cental Storage, VOM Advanced, Data Insight for Storage), this assessment service provides an insight view into the storage in SAN, NAS, and DAS storage and provides to the IT organization with the information about what applications are connected to what storage arrays and how much of the storage the application is using so organizations can make informed decisions about how their existing storage assets are being utilized. EMEA Partner Led Consulting 17

Future State Architecture Gap analysis of the customers current architectures VS the customers strategic vision Structured services engagement that determines a Clients Data Centre “Future State” requirements and vision Reviews and analyses the clients current (tactical) and future (strategic) business requirements Captures the current state Data Centre architecture and delivers a future state vision Delivers a supporting roadmap to achieve the vision. Based on a proven Company I methodology Two service offerings – FSA Lite and full FSAA EMEA Partner Led Consulting 18

Cloud Readiness Assessment Gap analysis of the customers current architectures VS the customers cloud based strategic vision The current state of cloudrelevant technology, as well as lack of definition or standardization in the areas of IT operations and IT governance, suggest that cloud computing is not an enterprise-grade choice for all workloads or use cases. It is therefore critical to segment or tier workloads based on their requirements. EMEA Partner Led Consulting 19

INFORM Risk Assessment INFORM is an information assurance cost/risk planning program that can assist customers in their business planning process An intelligent application based on • 1, 272 Surveys from Fortune 1000 organizations • Primary and third party research • Expert logic Analyzes your unique Business Drivers and IT Risks Develops a Solution Roadmap to best meet your needs Relates the results to currently accepted IT Management and Security Standards EMEA Partner Led Consulting 20

Residency Services EMEA Partner Led Consulting 21

Consulting Residency Services Residency Types • Manage the technology stack Technology Resident • Demonstrate domain expertise Expert Resident • Take unique Symantec Intelligence and provide to client • Out-task area of expertise Strategic Resident • Ensure value realization of Symantec Investment • Lead the full deployment of portfolio wide solutions EMEA Partner Led Consulting 22

CTAP Residency Example Cyber Threat Analysis Program (CTAP) EMEA Partner Led Consulting Customer Requirements CTAP Response Create and implement action Access to Symantec’s Infrastructure Assess nature of the threat Comprehensive Toolset Intelligence gathering and validation Subject Matter Expertise Threat identification Access to cyber intelligence 23

Consulting Services for Partners EMEA Partner Led Consulting 24

Consulting Enablement • The consulting IP produced includes the following: – Service Delivery Resource Kits, which are product and service specific. This is a collection of documents to be used by the consultant before, during and after a specific consulting engagement. – Consulting Service Delivery Training, which are product and service specific. This courseware may be delivered in a workshop setting, or is also available in a self paced training format. – Symantec Reference Architecture (Sym. RA). This is a framework for development and delivery of multi-product, multi-vendor solutions. The first such reference architecture is for customers attempting to virtualize business critical tier 1 applications (i. e. Microsoft SQL Server, Sharepoint and Exchange Server). – Partner. Assist, is a for fee, remotely delivered support service designed for consultants that need assistance during the delivery of a project. EMEA Partner Led Consulting 25

Where do I find the enablement? • Most SDRKs are made available to Specialist Partners; some are available only to Master Specialist Partners. Partner. Assist is available to Specialist or Master Specialist Partners. • Sym. RA resources are exclusively available to Master Specialist Partners • The aforementioned resources are made available to the intended Partners via Partner. Net and Sym. IQ for Partners. – You will only be able to access resources which are available for the Specialization areas to which your organization is associated, and in some cases also require that your organization be Master Specialist in the associated domain. Please contact your Channel Manager or Partner Services Manager for additional details. EMEA Partner Led Consulting 26

Enable a successful ecosystem of consulting partners EMEA Partner Led Consulting 27

Additional Offerings and Resources • Symantec Connect – Master Specialist “private forums”: http: //www. symantec. com/connect/ – For Master Specialist Partners only. There are eight separate private forums which are moderated by the Partner. Assist team and the Consulting Enablement Product Managers. This forum is designed to provide an environment for Master Specialist Partners to interact with other Master Specialist Partners, on topics pertaining to consulting services. It also provides an open and direct vehicle to feedback to the owners of the consulting IP (e. g. SDRKs and Sym. RA). If you are not registered, please email matt_heilig@symantec. com and include your company name, organization and complete contact details. • SEES Consulting Enablement Solution Journals – http: // symiqforpartners. com/sites/partnerassist/default. aspx – We offer these documents to our entire Specialist and Master Specialist Partner community members. These documents, contain detailed “how to” experiences of Symantec consultants delivering services to our customers, the challenges they encountered and how they worked around those challenges. This exciting publication is now in its third volume of publishing. • Global Consulting Enablement Service Catalog – https: // symiqforpartners. com/pages/default. aspx – This single catalog provides a comprehensive view of all of the SDRKs which are available, including brief descriptions of what they contain, links to the SDRKs and associated training materials. • Partner. Assist Service Catalog – http: // symiqforpartners. com/sites/partnerassist/default. aspx – This single catalog provides a comprehensive view of all of the available Partner. Assist services which are available, 28 including how to engage this team to utilize their services.

Contact Us • If you have any queries regarding these services or anything else consulting-related, please contact us on EMEA_Partner_ Consulting@Symantec. com EMEA Partner Led Consulting 29