NIST SCAP Validated
Purpose Built for Public Sector Agencies
The SecureFusion™ software suite automatically discovers your network and IT assets, measures for FISMA & 800-53R3 IA control & IAVA vulnerability management compliance. We're also the first SecureFusion provides agentless and agent-based options to suit any environment, all provision via a scalable Web 2.0 service oriented architecture (SOA).
SecureFusion is aligned with the Consensus Audit Guidelines (CAG), providing an enabling platform for network & host discovery, host and network configuration auditing, continuous monitoring, as well as vulnerability scanning. All managed via a centralized portal for continuous measurement, dashboard analytics, and reporting.
Measure Enterprise & FDCC & IAVA Compliance Quickly and Easily
Purpose built and implemented upon the NIST SCAP protocol, SecureFusion performs configuration checks on the system required to implement the Federal Desktop Core Configuration (FDCC) and/or NIST SP 800-53a standards for the desktop, servers, and other network components. With SecureFusion, you can measure FDCC & NIST SP 800-53 compliance enterprise-wide, without mandating the deployment of agents, but providing the option for agents where appropriate. Navigating between summary reporting and executive dashboards to specific, descriptive and granular reports is just a click away in the SecureFusion Portal.
How does it work?
SCAP Validation and assured interoperability.
SecureFusion uses the Secure Content Automation Protocol (SCAP) to enable automated asset discovery, vulnerability and configuration management, and policy compliance evaluation in accordance with Federal standards. This protects your investments, enhances interoperability, and reduces costs.
Integrated risk and compliance scanning
SecureFusion integrates four critical security functions, including:
- SecureFusion Asset Discovery - rapidly discovers and inventories all networks and network assets, including managed and unmanaged devices.
- SecureFusion Configuration Management- maintains an accurate inventory of system configurations, including technical controls, software, user accounts and system changes.
- SecureFusion Vulnerability Management -conducts ongoing management of third party vulnerability scanners like Nessus®. Integrates the vulnerability detection and reporting for operating systems, infrastructure, network applications and databases.
- SecureFusion Policy Management - continuously evaluates system configuration and compliance with standards and policies.
Streamlined measurement, analytics, and reporting
- The SecureFusion Portal controls all scanning functions to enable a streamlined, automated and end-to-end measurement process - and provides unique value added functionality, focused on security and compliance analytics, reporting and workflow.
SecureFusion automatically measures IT security and compliance against:
Achieve Compliance Quickly and Easily
We understand that measurement of FDCC compliance and NIST 800 standards are top priorities for government agencies. We can help you understand your current state, report on your compliance, and measure your progress towards remediation quickly, easily and continuously.
Government agencies will find SecureFusion listed as a NIST SCAP Validated tool under the Compliance Framework, Network Framework and Vulnerability/Configuration Scanners categories on the National Vulnerability Database Web site.
The most NIST Validations for SCAP of any Information Assurance Toolset
SecureFusion has received the following validations from the National Institute of Standards and Technology (NIST):
http://nvd.nist.gov/validation_gideon.cfm
Learn More
To learn how SecureFusion can benefit your IT environment, watch our video, or contact our public sector sales team! |
