[The program] comes at a time when it’s crucial for us to get broad industry support for our Symantec Enterprise Security Architecture, Symantec group manager for business development Stephane de Saint Albin said.

At first, the company is focusing on recruiting vendors that can tie their security products to Symantec’s Security Management System (SSMS), which provides a common way to describe security events across diverse types of devices.

The SSMS comprises event collectors that take security events from devices such as firewalls and intrusion detection systems and present them to a centralized repository in a standard schema. A management component then allows security officers to slice and dice this information into security incidents.

The company has made a SESA Software Development Environment available. Partners using the SDK to build connectors include TippingPoint Technologies and Entercept Security. Symantec has previously said that it will itself build event collectors for products from rival companies, where a partnership would be very unlikely.

Currently the SDK supports inbound event integration for network, anti-virus and content filtering. A release next month will also provide support for integrating events from network and host-based IDS and firewall systems.

A second part of the partner program is aimed at having Symantec’s AntiVirus Scanning Engine work with devices such as caches and web security proxies using the internet content adaptation protocol (ICAP). There is an SDK available here, too. Long-time partners include Blue Coat Systems Inc and Network Appliance Inc.

The partner program includes the tools, support, certification, marketing and PR necessary to bring a Symantec-compatible product to market. De Saint Albin said there is a nominal $5,000 fee payable every year, basically just to ensure partners are serious.

A lot of security vendors out there recognize the same need from customers, said de Saint Albin. Security devices are producing a lot of information…there is a very important need for it to be consolidated and centrally managed.

The technology initiative is the fourth leg of Symantec’s partner program, which already includes channel, integration and consulting programs, de Saint Albin said. He said that the program will be expanded to provide integration between other types of security product in future.

Source: Computerwire