惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

S
Schneier on Security
The Register - Security
The Register - Security
月光博客
月光博客
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
The GitHub Blog
The GitHub Blog
博客园 - 司徒正美
罗磊的独立博客
U
Unit 42
S
SegmentFault 最新的问题
Y
Y Combinator Blog
博客园_首页
Hugging Face - Blog
Hugging Face - Blog
J
Java Code Geeks
Schneier on Security
Schneier on Security
Know Your Adversary
Know Your Adversary
C
Check Point Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Simon Willison's Weblog
Simon Willison's Weblog
V
Vulnerabilities – Threatpost
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
阮一峰的网络日志
阮一峰的网络日志
The Hacker News
The Hacker News
博客园 - 叶小钗
C
Cybersecurity and Infrastructure Security Agency CISA
Spread Privacy
Spread Privacy
L
LINUX DO - 热门话题
T
The Exploit Database - CXSecurity.com
P
Palo Alto Networks Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Latest news
Latest news
L
Lohrmann on Cybersecurity
A
About on SuperTechFans
L
LangChain Blog
Stack Overflow Blog
Stack Overflow Blog
S
Securelist
A
Arctic Wolf
D
Darknet – Hacking Tools, Hacker News & Cyber Security
T
Threatpost
Scott Helme
Scott Helme
博客园 - 聂微东
博客园 - 【当耐特】
T
Tenable Blog
I
Intezer
D
DataBreaches.Net
B
Blog RSS Feed
Security Latest
Security Latest
C
Cisco Blogs
T
Tor Project blog
N
Netflix TechBlog - Medium

SECURITY.COM

Daxin Returns: Stealthy Malware Resurfaces in Taiwan Alongside a New Backdoor The Detection Gap: MITRE ATT&CK T1140 and T1105 Humble Brag: Symantec® Data Center Security Achieves Common Criteria Certification GodDamn Ransomware: Latest Beast Rebrand Uses Malicious Driver to Disable Defenses Tips to Harden Your Air Gapped Environments The Visibility Challenge Nobody Asked For AV-TEST Gives Symantec® Endpoint Security Complete a Perfect Score The BYOVD Epidemic: How Attackers Are Weaponizing Trusted Windows Drivers to Kill Security 🎙️SECURITY.COM The Podcast: The Parasite in the Machine: Unmasking the Speagle Infostealer Your DLP Incident Backlog Owes You Closure Backdoor.Mistic: New Backdoor May be Linked to Ransomware Access Broker 5 Reasons Symantec® CBX Delivers Total Endpoint Visibility 8 XDR Questions From the Show Floor Another Year, Another Win: SE Labs® Recognizes Symantec® Endpoint Security Hidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden Locking Down the Server 🎙️SECURITY.COM The Podcast: The Death of SIEM Threats Rise on a Tide of Global Unrest When Nation-States Stop Caring About Size Espionage Campaign Targeted Stock Exchange Executive for Five Months Data Security Is Having A Moment 5 Ways XDR Helps SOCs Act Faster 🎙️SECURITY.COM The Podcast: The Evolution of Cybersecurity PR with W2 Communications The Maximalism Trap: When More Becomes Too Much Symantec DLP Cloud and DPSM are the Power Couple Security Strategists Need Symantec DLP Cloud and DSPM are the Power Couple Security Strategists Need The Future of the Partnership: AI, Automation, and Ecosystems Fast16: Pre-Stuxnet Sabotage Tool Was Built to Subvert Nuclear Weapons Simulations 🎙️SECURITY.COM The Podcast: Iran’s Cyber Warfare Playbook: What Defenders Need to Know Right Now 5 Ways To Keep AI in Check Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign Doing More with Less: How Government Agencies are Rethinking Cybersecurity Navigating Compliance and Insurance as a Competitive Edge Is SIEM Trying to Do Too Much? Every Defender Deserves Frontier AI The New Partner-Vendor Relationship DLP Made Easier on the Teams Running It The EU Digital Wallet: Why Waiting is Not an Option Trigona Affiliates Deploy Custom Exfiltration Tool to Streamline Data Theft Stopping Data Leaks at the Speed of AI Harvester: APT Group Expands Toolset With New GoGra Linux Backdoor How AI Increases the Load on Security Teams Web Traffic Visibility is the New Non-Negotiable The Agentic AI Tsunami is Here: Is Your Legacy IAM Sinking or Swimming? Technical Enablement vs. Marketing Noise Enterprise-Grade Security for All in 2026 Architecting for Margin Beyond the Initial Sale 🎙️SECURITY.COM The Podcast: A Brief History of Data Loss Prevention Symantec CBX Through the Paparazzi Lens The Modern Threat Landscape and The Partner’s New Burden Symantec CBX Rocked RSAC 2026 Conference For Financial Services, a Wake-Up Call for Reclaiming IAM Control The Next Identity Shift Cyber Legends: Behind the Scenes of CBX Built for This Moment (and All Those to Come)
The U.S. Navy’s Playbook for Cost-Controlled, Reliable Cybersecurity
About the Author · 2026-04-01 · via SECURITY.COM
  • Cloud-first isn’t the right fit, and the U.S. Navy proved why.
  • One smart switch to Symantec Endpoint Protection (SEP) gave the Navy fewer agents, faster endpoints and real, measurable performance gains. 
  • With trusted partner Carahsoft, the Navy scaled security and closed critical gaps across air-gapped environments.

As government agencies modernize their cybersecurity stacks, many are discovering go-to, cloud-first security tools don’t always meet the needs of their mission-critical or air-gapped environments. The U.S. Navy recently confronted this reality in their own security stack. 

The Navy’s experience reflects a growing truth across government IT: Modernization doesn’t look the same for everyone, especially in disconnected or high-security environments. Like the Navy, agencies in highly regulated environments must balance innovation and practicality if they hope to keep pace with emerging, sophisticated threats. 

Why the Navy’s endpoint security needed an upgrade

In recent years, the Navy has advanced several new beneficial security initiatives that also brought challenges right along with them. One effort centered on a leading endpoint security provider that performed well in cloud-connected environments but struggled in isolated air-gapped environments—of which the Navy had many. 

At the same time, the growth of AI workloads introduced a new financial variable. AI brought noticeable productivity gains for users, but also drove up cloud costs significantly. With this in mind, all signs pointed to on-prem and air-gapped solutions for budget control. 

To keep workflows airtight, even in air-gapped environments, the Navy chose Symantec solutions via Catalyst Partner Carahsoft and Leidos to modernize its endpoint security and close critical gaps. The results offer insight into what a unified, cost-controlled security strategy can achieve when security is built around mission realities and guided by experienced partners. 

Transforming the SMIT Network 

Modernization efforts first took shape within one of the Navy’s most complex environments: Service Management, Integration, and Transport (SMIT). Supporting approximately 650,000 users, SMIT became the proving ground for a more streamlined approach with Symantec Endpoint Protection (SEP) replacing legacy endpoint agents.

Fewer agents, less complexity

One of the most immediate wins came from consolidation. By replacing a legacy endpoint agent, the Navy unified endpoint protection across Windows, MacOS, and Linux with the single SEP agent. This even removed the need for ePolicy Orchestrator (ePO).

What changed:

  • Reduced tool sprawl
  • Simplified policy enforcement
  • Cleaner endpoint footprint 

Operational efficiency at scale

With a lighter architecture in place, management became significantly easier. The virtualized endpoint infrastructure enabled faster provisioning and easier updates while lowering admin costs. It also led to measurable performance gains like lower CPU and memory usage on endpoints, better performance during heavy-demand events and wider advanced protections across environments. 

Stronger protections built right in

Beyond performance, Symantec also introduced a host of capabilities, including:

  • Location awareness
  • Host integrity monitoring
  • Tamper protection
  • Adaptive and predictive protection
  • Endpoint deception technologies

Thanks to one seamless transition, devices ran faster and security rose to enterprise-grade protection. Clearly, this was more than a migration. It was a meaningful capability upgrade that users saw measurable benefits from.

Extending protection across legacy

With such promising results, the Navy expanded the approach to other environments that all handle extremely sensitive mission data, including: NAVAIR, Navy Shipyards, and Surface and Undersea Warfare Center. They all benefitted from centralized protection and speedy integration, proving SEP can scale without sacrificing performance or control. 

But performance gains were only part of the story. 

Through a Portfolio Licensing Agreement (PLA), the Navy made the full Symantec suite broadly available without incurring in additional licensing costs. This model helps prevent major future cost surprises, including expensive end-of-life (EOL) OS charges and vendor price hikes—estimated at 300% in some cases. 

For agencies managing large, heterogeneous environments, licensing strategy can be just as important as technical capability. In this case, Symantec delivered both. 

Modern tools for modern threats 

What might’ve seemed like a simple tool swap turned out to be a major cybersecurity strategy shift for the U.S. Navy, as phased implementation won them lightweight centralized management and scalable architecture. With Symantec and Carahsoft providing the foundations and Leidos delivering deployment expertise, the Navy achieved stronger threat response and financial control. 

For agencies navigating their own modernization journey, the Navy’s experience offers a practical blueprint:

  • Cloud-first does not mean cloud-only.
  • Air-gapped environments still require enterprise-grade protection.
  • AI workloads can introduce real cost volatility.
  • Agent consolidation can drive measurable performance gains.
  • Licensing strategy can unlock major long-term savings. 

Success came not just from selecting the right technology, but from aligning platform strategy, deployment expertise and licencing from the start. Through the Catalyst Partner ecosystem, Carahsoft brings deep expertise and specialized knowledge of the U.S. federal landscape, helping agencies meet mission demands with solutions they know and trust—powered by Broadcom innovation. 

It’s time. Leave legacy security behind, without inviting unpredictable cloud costs. Connect with Carahsoft today to explore how Symantec and Carbon Black can protect government environments and fit budget realities. 

Read the full story in the case study: Transforming Endpoint Security Across U.S. Navy Networks.

You might also enjoy

The U.S. Navy’s Playbook for Cost-Controlled, Reliable Cybersecurity

Julie Moses

Julie Moses

Strategic Partner Marketing, Enterprise Security Group