How Symphion is closing the print security gap for multivendor fleets

March 24, 2025
Security, Series 11, Podcast, Article

Symphion’s vendor-agnostic Print Fleet Cyber Security Service™ overcomes the challenges and administrative burden for securing a multivendor printer fleet. 

Traditionally, managing printer/MFP hardware security has been the domain of the OEM, overseeing and managing its own devices through its device-level, built-in security features and proprietary software product. These features and software products provide a do-it-yourself security option for single-vendor environments. However, this approach does not address the vulnerabilities (and risk) presented by multi-vendor deployments or where security controls are inconsistently applied and maintained or not applied at all. It emphasises the continual need for a thorough, vendor-neutral strategy for print fleet security that enhances, rather than merely depends on, OEM-specific software solutions. This approach should use the fleet’s inherent device-level features and mitigate other unique risks associated with print fleets.

In 2015, IT specialist Symphion took a closer look at the print environment and saw an opportunity to devise a vendor-agnostic solution that would increase and maintain the security posture of any print fleet, however diverse in brand, age, and maintenance status.

Key features of the print security landscape

Symphion highlights key print security challenges:

• Printer endpoints are often managed and secured independently of the broader IT environment, creating a security gap.
• NIST and other risk management standards are not routinely implemented.
• Manufacturers have built-in, rich security features, but these are typically not used and have no common security controls across different manufacturers.
• Devices are being put on the network with default factory settings, creating risk around exposed vulnerabilities. These include high-risk exposures such as access passwords, as well as open ports and remote-control communications.
• Often, there are no lifecycle or change management processes.

Print Fleet Cyber Security as a Service™

Symphion launched its Print Fleet Cyber Security as a Service™ solution in 2018 as a component of its managed service delivery model. It aimed to capitalise on the fact that approximately 20% of its target market’s network endpoints were printers and vulnerable for the abovementioned reasons.

Symphion addresses these challenges with cost-effective security software that controls security settings across all devices regardless of brand, model, firmware version, or age. Its turnkey service is provided by highly trained personnel who implement and enforce a cyber hygiene programme for the health and security of devices over the contract period – typically three years.

Symphion acknowledges that cost is critical in the print market. The company has designed its solution to be affordable and flexible, with an all-inclusive, per-device price for a complete service tailored to the number of devices under management. Its three-year contracts deliver ongoing due diligence, monitoring, and consultancy to maintain security.

Legacy print fleet security management

Symphion works with what the customer has in place, hardening legacy devices as much as possible and supporting the print security environment as the fleet evolves. This allows customers to sweat hardware assets longer without compromising security and offers an alternative to swapping out devices.

Symphion points out that most customers are not using the security features on their devices, which justifies investment in a solution that ensures these controls are turned on and operating effectively. Symphion’s lifetime monitoring and management ensure devices are not returned to factory default settings after servicing but are maintained consistently and securely throughout their lifecycle.

Intensive threat environment and regulatory requirements are driving adoption

Printers are often overlooked as a cybersecurity risk, but organisations are increasingly realising that one exposed printer can lead to significant security breaches or compliance failings.

Symphion has been approached by organisations that have experienced printer-led breaches or failed security compliance audits. It has also heard from in-house teams that have realised the OEM’s software is not covering all the bases and are seeking a solution to manage the entire fleet.

The company has a strong client base in the healthcare sector, where print volumes are high and disruption directly impacts patient welfare. The importance of avoiding disruption when maintaining print fleet security is reflected in Symphion’s conscientious approach of testing new controls and configurations rigorously before implementing them in the field to ensure they do not affect device performance and availability. The company also provides full documentation and reporting to support clients’ compliance efforts.

Quocirca opinion

Symphion’s brand-agnostic solution reflects the reality of many enterprise and public sector print environments that feature devices of different vendors, ages, and security capabilities. Its concierge service does the heavy lifting around monitoring, patching, and maintaining security at the required standard, lifting the burden from in-house teams and giving them access to expertise that can unlock the native security features of their existing hardware.

Symphion’s Print Fleet Cyber Security as a Service should appeal to channel partners seeking a turnkey value-added security offering to help customers manage multi-vendor print fleets. Overall, 73% of organisations surveyed in Quocirca’s Print Security Landscape Study 2024 said they were operating multi-vendor fleets. However, multi-vendor fleets were also associated with a higher incidence of print-related breaches, with 70% saying they had experienced one or more breaches, compared to 59% of standardised fleet operators. Symphion’s solution should appeal to customers concerned about security but wishing to continue operating a multi-vendor fleet.

Hear more in Quocirca’s podcast with Jim LaRoe, CEO of Symphion.