Vulnerability Management
Know your vulnerabilities. Know your risk.
Do you know where your most vulnerable systems, networks and applications are?
Do you know your average remediation time for high and low-risk vulnerabilities?
Can you automatically identify vulnerabilities by asset class, business unit, classification, category, and regulatory requirement?
Dealing with PCI, FERC/NERC, HIPAA, or several of these requirements at once and need to consolidate efforts? Need to base your vulnerability assessments upon the Common Vulnerability Scoring System (CVSS)? Do you need to report based on Information Assurance Vulnerability Alerts (IAVA) distributed by the JTF-GNO for "High-Risk/Threat" vulnerabilities?.
SecureFusion Vulnerability Management can help you answer these questions and more. It will establish a repeatable, automated scanning program across your entire enterprise. The most current results are always reflected in the SecureFusion Portal, so you don’t have to wait for the next vulnerability assessment or audit. And the portal stores historical results for effective comparisons and benchmarking.
How does it work?
SecureFusion Vulnerability Management scans for thousands of known vulnerabilities in operating systems, infrastructure, network applications and databases. The vulnerability signatures are updated on a daily basis and provide checks for the most recent security vulnerabilities.
End-to-End Automation and Workflow
- Scan scheduling, scan queue, detailed scan history, results filtering and target blacklisting.
- Automatically assigns a remediation task for each vulnerability detected.
- Portal enables you to mark items completed and view remediation reports.
- Integration with BMC Remedy
System Patch Reporting
- Automatically correlates vulnerabilities with missing vendor patches.
- Presents information by vendor and vendor bulletin.
- Includes informative charts, statistics and drill down capabilities.
Results Filtering
- ID and automatically remove false positives, accepted risks, and vulnerabilities with compensating controls from future reports.
Automated Signature Updates
- Checks for new vulnerability signatures every four hours.
Target Blacklisting
- Avoid impacting a sensitive host or third party host with our blacklisting capability.
Bandwidth Throttling
- Control the speed and bandwidth utilization of vulnerability scans
- Assign an integrated bandwidth throttle to control the network traffic generated.
Massive Scalability
- Centralize or distribute standard deployments based on your needs with SecureFusion’s service-oriented architecture (SOA).
Dynamic Report Building
- Quickly generate custom reports targeting specific areas of interest or concern.
Automated Scheduling
- Develop a detailed and customized scanning program with SecureFusion.
- Scans that are scheduled to run on a recurring basis are automatically performed and require no further intervention.
- Define schedules for different groups of assets, indicating that Sarbanes-Oxley assets be scanned on a weekly interval while other assets are scanned monthly.
Benefits
- Quickly view and prioritize remediation with detailed reporting.
- Integrate SecureFusion with existing enterprise systems via Web services, including trouble ticketing and patch management.
- Enjoy robust scan scheduling and automation.
Getting Started
A complete SecureFusion implementation, including installation, training and quality assurance, can be completed in less than three business days. Our deployment strategy delivers immediate results while minimizing total cost of ownership.
Learn More
To learn how SecureFusion can benefit your IT environment, watch our product video. |
