I am presently implementing SEP15/Cloud and migrating from the on prem solution. As we know, the SEP15/Cloud portal is a work in progress. If I create a new polcy, say "antimalware" type and publish it, that policy will take precendence if an updated default "antimalware" policy becomes available.
If a new default policy of a new policy type gets created as part of a Symantec update to the SEP15/Cloud portal and I of course do not have an existing published policy of that type, the the new default policy will be applied to devices.
I need more granular control of which policies and when they will be applied to devices. With the current design, a new policy could negativel impact on thousands of client devices. This also operates counter to any change management processes.
