|
Today’s businesses are required to address security and compliance risks on their IT
infrastructure on a daily basis. Most businesses rely on a collection of point products and
manual processes when attempting to solve this problem. Driven by an increasing number of regulatory mandates, increasing costs of achieving and maintaining compliance, increased IT risk (e.g., security breaches) that may even affect Standard & Poor evaluations of risk,
customer and shareholder confidence, security compliance programs are fast becoming an essential component of any enterprise IT Strategy. IT GRC requirements affect IT security at multiple levels, from the network down to endpoint client machines and other network
devices. IT departments need to keep up with new regulations and modifications to existing regulations to pass audits, while reducing costs, complexity and redundant work. Vigilance in keeping up with current operating System (OS) vulnerabilities and associated patches is critical as zero-day attacks at the OS level become more sophisticated. Maintaining homegrown and manual security compliance processes is no longer a viable option.
Vulnerability Scanning and Management technology provides a centrally managed, enterprise-scale solution that enables organizations to close It compliance gaps, and implement
continuous monitoring in order to audit, evaluate, and comply with internal, industry, and regulatory policies for It controls and security at the OS level. Organizations realize quick
time-to-value with easy to install, intuitive, high value standard compliance policies
(NIST SCAP, FDCC, PCI-DSS, SOX, GlbA, HIPAA) ready out-of- the-box with regular updates. This technology is usually a dedicated hardware appliance easily plug into the network for fast
Deployment and integrates endpoint vulnerability management, industry and federal compliance, patch management, remediation, auditing and reporting. into a single. A centralized administration console facilitates management of multiple appliances across the enterprise.
Key Solution Features and Benefits
Vulnerability Management (VM)
Identifies security vulnerabilities and compliance exposures through deep inspection with client-resident asset agents - transparent to end users.
Agentless Vulnerability
Assessment
Asset prioritization and profile-based scanning to automatically discover, inventory and assess security posture of the OS on networked devices, including mail servers, FTP servers or other UNIX or Windows hosts.
Auditing
Monitors across heterogeneous systems and provides industry-standard benchmarks for IS compliance audits for operating systems; Select from the list of audit benchmarks or create custom policies.
Patch Management and
Remediation
Delivers patch management with ready-to-deploy remediation and enforcement actions; remediation capability goes beyond traditional patch management, allowing network managers to change configurations and potentially mitigate weak settings, including disabling an application or denying a network request.
|
