Completion Report
Project Summary:
Paper produced and submitted on time.
A clear picture of what is on offer and achievable in respect of anti-malware provision on our windows infrastructure was obtained.
i have a clear idea what can be implemented to improve protection and ease the effort in deployment.
i have a capital cost for the upgrade of licences should we go ahead.
in order to investigate hypervisor solutions, the upgrade of the existing Mcafee software would be a useful starting point as the cost is £5k for a year.
Although the decision whether to proceed next year with this recommendation has still to be taken, the main benefits are a clear idea of what is in the market, and that we can utilise hypervisor technology in the anti-malware field with little capital cost by upgrading what we currently deploy. Any transition would be seamless and non intrusive to the userbase and would be handled in conjunction with the usual monthly restarts during patch rounds.
Analysis of Resource Usage:
Staff Usage Estimate: 1 days
Staff Usage Actual: 1 days
Staff Usage Variance: 0%
Other Resource Estimate: 1 days
Other Resource Actual: 1 days
Other Resource Variance: 0%
Explanation for variance:
.
Key Learning Points:
Did not manage to engage with colleagues for input into my vendor meetings as they had other work on and attempts to meet proved difficult. It didn't negatively impact on the outcome, but would have been preferable to meet and drill down further into their requirements instead of being rushed.
The scheduling of vendor meetings over a two day period worked really well. It provided me with the background information I needed in a short space of time. As a time management strategy it worked for me.
This being my first project using the methodology here, it is vital the relevant notes are written up in a timely fashion and the structure in place before starting. This was already work in progress by the time it became a project, but I can see now at closure the benefit of using the methodology.
Outstanding issues:
Nothing that affects the closure of this project. As noted above a separate decision has to be taken regarding deploying the hypervisor solution as this would ease deployment over hundreds of servers and use less CPU than the current traditional scanning method we have in place. Essentially we either continue as we are which is time consuming or move to a more efficient method of deployment.