EM B06: Integrating Symantec Solutions with Workflow Templates 1
EM B06: Integrating Symantec Solutions with Workflow Templates
Jason Short Sr. Product Manager Symantec Workflow
Shawn Turnbow Integration Strategy Office of the CTO
Agenda
• Workflow Overview
• Workflow Integration Demonstration
• Technical Features Overview
• Roadmap
• Additional Templates Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 2
What is Symantec Workflow
• Graphical development tool to model and implement security processes
• Link security tools and users in a defined, repeatable, controllable, and auditable process
• Create automation and decision logic with checkpoints and approvals
EM B06: Integrating Symantec Solutions with Workflow Templates 3
Security Process Management Framework
The Picture Is The Process
Common Use Cases for Workflow
EM B06: Integrating Symantec Solutions with Workflow Templates 4
Use Case Example
Make Data Actionable Almost every enterprise level application creates 1000s of records of data. Utilize Workflow to manage that data by exception within a defined process.
Automate Manual Tasks
Utilize Workflow as a run book to automatically execute scripts, procedures, web services or tasks to reduce manual effort.
Extend an Existing Application
Utilize workflow to create and manage specific access to an existing application beyond the application’s intended users
Integrate Disparate People and Applications
Utilize Workflow to integrate several disparate applications, administrators and end users to transform a series of point products into a ‘Solution’
Process Control Utilize the Workflow Auditing and Reporting Framework to put control and accountability around your IT Security and Business Processes
EM B06: Integrating Symantec Solutions with Workflow Templates 5
DLP Process Template Demonstration
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 6
Components and Designer
-Action
-Decision
-Data
-Text
-Math
-Date
-Application
-Presentation
-Communication
Component Types
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 7
• Applications Protocols:
– Web Service
– Database
– XML / Flat File
• Applications:
– LDAP
– SharePoint
– Excel
– InfoPath
– Remedy
• Scripting and Custom Components
Generators Integration Methods
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 8
Web Form Designer
• Graphical
• Display Information
• Collect Information
• Decisions
• Dynamic Panels
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 9
Process Start Options
User Initiated via a Web Form
Application Initiated via a Web Service
Auto Initiated based on a Schedule
Auto Initiated by Monitoring Environmental Variable
(Database, Email, File Folder, Server, Log, etc)
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 10
Process Manager
• User / Role Based
• Task Management
• Reporting
• Service Catalog
• Documents Management
• Admin Functions
• Webparts
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 11
• Task Assignment
– To a User
– To a Group
• Task Monitoring
– SLA and Escalations
– Timeouts
• Task Notification
– Task List
Task Management
Technical Features Overview
EM B06: Integrating Symantec Solutions with Workflow Templates 12
Audit and Reporting Framework
Technical Features Overview
• Package Multiple Projects into a Single Installer
• Lock Specific Models for View/Edit
• Licensing Framework
• Install Supporting Systems
– SQL DBs
– Application Pools
– Application Properties
EM B06: Integrating Symantec Solutions with Workflow Templates 13
Packaging and Licensing Projects
Roadmap
Any forward-looking indication of plans for products is preliminary and all future release dates are tentative and are subject to change. Any future release of the product or planned modifications to product capability, functionality, or feature are subject to ongoing evaluation by Symantec, and may or may not be implemented and should not be considered firm commitments by Symantec and should not be relied upon in making purchasing decisions.
EM B06: Integrating Symantec Solutions with Workflow Templates 14
Legal Disclaimer
Road Map
• Re-Evaluate Documentation Methodology for Workflow
• Prescriptive vs Descriptive Documentation
• Survey of other Development Frameworks
– Source Documentation
– Community Documentation
• Point of Use
EM B06: Integrating Symantec Solutions with Workflow Templates 15
Component Documentation
Road Map
EM B06: Integrating Symantec Solutions with Workflow Templates 16
Component Help Wiki
Roadmap
EM B06: Integrating Symantec Solutions with Workflow Templates 17
Container Project Type
• Single Project
• Models can be any project Type
• Single Deployment Directory
Road Map
• Workflow Content ‘Store’
– App Store like feel inside the Workflow Designer to distribute officially supported Symantec Workflow Content (Components and Templates)
– Use SymAccount to Download Content
– Full Process Descriptions
– Example Videos and Screenshots
– User Ratings and Comments
– Download directly into Designer
EM B06: Integrating Symantec Solutions with Workflow Templates 18
Workflow Solution Center
Road Map
EM B06: Integrating Symantec Solutions with Workflow Templates 19
Workflow Solution Center Screenshot
Road Map
EM B06: Integrating Symantec Solutions with Workflow Templates 20
Workflow Solution Center Screenshot
Road Map
Control Compliance Suite
•Compliance Incident Remediation
•Vulnerability Incident Remediation
•RMS Baseline
Data Loss Prevention
•Data at Rest Scan Remediation
•FlexReponse Rule Logic
Critical System Protection
•Event Management and Remediation
Symantec Security Information Manager
•Event Management and Remediation
Endpoint Management
•Patch Change Managment
•Software Virtualization Delivery Request
EM B06: Integrating Symantec Solutions with Workflow Templates 21
Symantec Templates
• Simple Templates
• Less than 30 Components
• Limited Support
• Component Packs
Template Attributes
Integration Examples
• Initiate a Workflow to Quarantine a VM using vShield when an asset is in violation of a desired policy in DLP, then send a email/task to remediate the issue to un-quarantine the asset
EM B06: Integrating Symantec Solutions with Workflow Templates 22
DLP / VMWare – Auto Quarantine Non-Confirming Asset
Integration Examples
• Allow a System Administrator without Access to CCS to import and scan an new Server/VM before putting that asset into production without giving that user access to the CCS Console
EM B06: Integrating Symantec Solutions with Workflow Templates 23
CCS – Import Asset and Scan
Integration Examples
• When SSIM creates an incident, automatically start a Workflow to handle the incident response process and audit the process from end to end.
EM B06: Integrating Symantec Solutions with Workflow Templates 24
SSIM – Incident Remediation
Integration Examples
• Automatically fetch and populate Dell Warranty Contracts from Dell for all Assets with a Dell Serial Number
EM B06: Integrating Symantec Solutions with Workflow Templates 25
SMP – Auto Populate Dell Warranty Contracts
Integration Examples
• Automatically Download, Stage, Create Policy and Distribute Patches that meet a specific criteria automatically the day a Patch is released.
EM B06: Integrating Symantec Solutions with Workflow Templates 26
SMP – 0 Day Patch
Thank you!
Copyright © 2011 Symantec Corporation. All rights reserved. Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. This document is provided for informational purposes only and is not intended as advertising. All warranties relating to the information in this document, either express or implied, are disclaimed to the maximum extent allowed by law. The information in this document is subject to change without notice.
EM B06: Integrating Symantec Solutions with Workflow Templates 27
Jason Short
303-601-5350
Shawn Turnbow
864-275-7190