[2] The endpoint security space has evolved since the 2010s away from limited antivirus software and into more advanced, comprehensive defenses.
[3] This allows the network administrator to restrict the use of sensitive data as well as certain website access to specific users, to maintain, and comply with the organization's policies and standards.
[citation needed][7] There is another model called software as a service (SaaS), where the security programs and the host server are maintained remotely by the merchant.
In the payment card industry, the contribution from both the delivery models is that the server program verifies and authenticates the user login credentials and performs a device scan to check if it complies with designated corporate security standards prior to permitting network access.
A foundational step in fortifying defenses is to grasp the myriad pathways adversaries exploit to compromise endpoint devices.