5 of 8Image
The glassed-off room that is the Security Operations Centre. Workstations are constantly manned by up to 15 analysts. Threats are also monitored on the four flatscreens on the facing wall.
Symantec collects information from their customers' intrustion prevention and detections systems and their firewalls. This data is analysed, and customers are told if they are under attack.
Malicious code can be dealt with in the bunker, or it can be escalated to Symantec's security response centre in Dublin. Symantec's global infrastructure is in constant communication, and includes labs in Calgary, Dublin and Auckland.
Symantec filters 1.5 billion lines of potentially malicious code per day, and collates information from email honeypots as well as customer desktops and servers.