We look after approx. 5000 tills across 900+ sites (connected predominantly via ADSL and growing number of FttC sites to a private MPLS WAN with 100Mb/s tail into our network) and are looking for a solution that will allow us to remove local AV endpoint but remain within our corporate policy, this has been decided to mean that we can maintain and deploy an application whitelist across the estate we can remove the AV endpoint allowing us to cut costs and cut the resources used by the endpoint (distribution of definitions which is a significant network hit, CPU and I/O). Obvious solution would be applocker controlled via GPO however we cannot put these tills onto the AD so GPO isn't an option.
Tills are mostly Windows 7 (dont believe applocker is viable) but windows 10 project starts soon.
I've looked at SEP 14 hardening (which would not really help with the goal of reducing load on the tills) but costs were way to high and promisec seems to rely on a central server pushing updates and scans via network scans rather than local on device endpoint.
Are there any solutions I've missed?
Thanks in advance and Regards
Load more comments
So my boss has tasked me with getting certified for CCNA, i took the course back in 2011 however never took the exam (family issues, horrible year). Since then I've been the network engineer for my company having migrated our old office from a mixed equipment network (nortel/3com) over to cisco 2960s and 4500 core, implemented standard templates for pix 501s, asa 5505s, 881 routers and implemented an ASA 5545 firewall pair (active/standby failover) to handle internet access and VPNs to 450 sites across the nation plus supporting them. When we moved office in 2014 I was tech lead for design and implementation of the core and server networks (3650 for campus, 4506-E for core and more recently nexus 3172s for the server network), a since departed colleague handled the campus network whilst we (largely myself) implemented Cisco ISE for wired and wireless role based network access.
My colleague on the hand left uni a year ago (degree in computer security) and has been working on our helpdesk (application and OS support mostly) and is moving onto our infrastructure team (team being myself and a line manager) as a security engineer. So has more recent experience in studying and has a good theoretical general knowledge but I have a lot more hands on experience.
Goals? Mine are to strengthen and reinforce my practical experience to move into a more architect orientated role, possibly international whilst his is to go into network security. its been hinted that if I get my CCNA then the company will fund my CCNP.
Is there any particular study guide that you would suggest and is bosons the only exam simulator worth looking at or are there others (preferably cheaper ones)? Note whilst the company may pay for the exams themselves (my line manager has said he'd try and get funding for the exams) we will be paying for any other expenses, personally I'm not that bothered as long as its affordable as it is an investment.
Thanks in advance!
Is anyone aware of a patch management solution aimed at the qsr market where the shops are reliant on realatively slow broadband connections either to a central network or the internet ?
Ideally looking for a low maintenance solution that can push down patches (Microsoft and third party) but minimise bandwidth used, key here is 7000 devices over 1000 sites without killing wan links. P2P delivery of content seems to fit if there is such a product.
Challenges are currently local disk space is not always available.