This is the "big brother" to SEP. It uses host-based intrusion detection (HIDS) and prevention (HIPS) to provide granular monitoring of file systems, registries, and even user activity.
For organizations subject to PCI-DSS, HIPAA, or NIST frameworks, SEP provides the necessary logs to prove that critical system files (like system32 or configuration directories) have not been tampered with. You can generate reports that show the file integrity status of endpoints. This is the "big brother" to SEP
Use Symantec Critical System Protection (SCSP). or NIST frameworks
If FIM is a compliance or security requirement (PCI DSS, HIPAA, etc.), do not rely on standard Symantec Endpoint Protection. Use a dedicated FIM tool or upgrade to Symantec EDR. This is the "big brother" to SEP