Configuration Management

Know your asset configurations. Know your risk.

The SecureFusion Configuration Management module continuously audits the configuration of your IT assets to provide deep insight into critical asset management and security management issues such as installed software, file sharing, user access, system patches and end-user controlled security settings. Configuration insight enables you to ensure that IT assets are fully accounted for and being used in accordance with corporate standards.

How does it work?

SecureFusion Configuration Management is an agent-less technology that fully automates the configuration monitoring process. It integrates with the SecureFusion Portal and the SecureFusion Asset Discovery module to provide a robust, enterprise-wide audit process. 

SecureFusion Configuration Management is designed for rapid deployment with no impact to the network and no need to modify desktops or servers. The module provides an authenticated, deep analysis of technology assets. It includes several hundred of the most common asset configuration IT control checks out of the box. The SecureFusion Configuration Management module can be configured to capture more based on the specific needs of the organization. Compared with traditional agent-based alternatives, the ease of deployment and automation in SecureFusion delivers a significantly lower total cost of ownership.

Audit Systems on Demand

Configuration Management provides the ability to check system and security configuration settings on all of your enterprise assets. You also are able to determine the depth of configuration checks, as well as the frequency and timing.

Perform Continuous Audits

Achieving a continuous auditing process has been a long-standing objective of security and controls professionals. SecureFusion features robust scheduling tools so you can establish a recurring schedule for configuration monitoring. Configuration checks can be performed at any interval you determine on a recurring basis with no manual intervention. This level of continuous auditing will support your external and internal audits against standards such as PCI, Sarbanes-Oxley, ISO 17799, NIST, CIS and COBIT.

Classify and Categorize Assets

Without a simple means to identify and group assets into distinct compliance categories, measuring the enterprise against specific standards or policies remains difficult. Traditionally, grouping assets into compliance categories required manual effort and considerable time, making it unachievable for many organizations. SecureFusion automates and simplifies this process so that key assets can be distinctly measured, independently of all of others, making the audit process and audit preparation much easier.

Benefits

Immediate Results with No Operational Impact

SecureFusion Configuration Management requires no agents to install and makes no system modifications. Within minutes of installation, you will begin receiving enterprise configuration data without any impact or changes to existing operations, tools or processes. 

Maintain Software License Compliance

Quickly inventory installed software on servers, desktops and mobile computers. Verify the installation and status of standard software packages such as anti-virus, personal firewalls, and system management agents. Validate license agreements and reduce unnecessary software license expenses. Measure authorized and unauthorized software against corporate standards and identify exceptions easily and accurately for remediation.

Verify Patch Deployments

Validate the deployment of system patches and identify assets that are outside of your patch management process. Reduce enterprise vulnerabilities and support IT demands through regular, automated audits of patch levels.

Automated Audit Preparation

Audit preparation is a stressful task requiring significant hours of research and planning. SecureFusion makes the IT controls portion of audit preparation a breeze. The information is at your fingertips any time during the year—not just the result of a last-minute frenzy prior to an audit.

Achieve Regulatory Compliance

Satisfy numerous regulatory requirements by performing regular, automated, in-depth system configuration audits. Ensure compliance with regulations through targeted configuration checks that address specific industry and corporate requirements.

Robust Scheduling

SecureFusion features robust scheduling tools so you can establish a recurring schedule for configuration monitoring. Configuration checks can be performed at any interval you determine on a recurring basis with no manual intervention. This level of continuous auditing will support your external and internal audits as well as industry and government regulations, such as PCI, Sarbanes-Oxley, GLBA and HIPAA.

Identify File Sharing and Peer-to-Peer Abuses

Reduce the exposure of confidential information by identifying unnecessary or inappropriate file sharing. Locate unprotected file shares on servers and workstations, as well as the installation of peer-to-peer file-sharing programs. 

Audit User Access Management

Track the provisioning of user accounts (local accounts and domain accounts) and powerful user privileges. Quickly identify key user attributes that indicate potential security risks, such as dormant accounts, excessive failed logins, locked-out accounts and administrative privileges.

Customizable Configuration Checks

SecureFusion Configuration Management comes pre-loaded with technical control checks commonly required by external auditors, vendor best practices and industry standards. However, should your reporting requirements exceed these pre-loaded control checks, you can add specific controls and configuration settings to the process.

Powerful, enterprise-wide capabilities

Our Configuration Management solution is designed for large, complex organizations. We provide you with the power and control to meet your configuration management and audit requirements.

View a Demonstration of SecureFusion

Our demonstration walks you through the SecureFusion Portal, populated with actual enterprise data from asset discovery, vulnerability management, configuration management and policy management.
Request a demo

For More Information