VULNERABILITY MANAGEMENT

Transcription

1 Vulnerability Management (VM) software differ in the richness of reporting, and the capabilities for application and security configuration assessment. Companies must consider how a VM technology will fit in their overall vulnerability management process for data center, cloud and virtual environments. Secu recommends using Tenable, as they offer a complete platform for vulnerability management, attack detection and mitigation, compliance monitoring, and IT risk management. The products portfolio includes best-of-breed active vulnerability scanning, the industry s only passive network vulnerability scanner and log correlation tools.

2 KEY FEATURES Scanning Capabilities Accurate, high-speed asset discovery Control systems auditing: SCADA systems, devices, and applications Reporting and Monitoring Flexible reporting: Customize reports to sort by vulnerability or host, create an executive summary, or compare scan reports to highlight changes Targeted notifications of scan results, remediation recommendations and scan improvements Deployment and Management Configuration and management via Nessus GUI Agentless scanner for easy deployment and maintenance

3 PRODUCT OVERVIEW Nessus Nessus is one of the most trusted asset with a widely deployed vulnerability, configuration, patch, and audit scanner. Nessus Enterprise Cloud Nessus Enterprise Cloud is a PCI-Certified Approved Scanning Vendor (ASV) solution. This cloud-based service enables remote, cloud-based management, sharing of multiple scanners, scan schedules, scan policies, and scan results. Passive Vulnerability Scanner The Passive Vulnerability Scanner (PVS) is the only continuous vulnerability scanner, essential in discovering risks from mobile and virtual devices and risks of cloud-based applications. SecurityCenter SecurityCenter provides a single console to administer Nessus policies, alerts, reports, and plugin updates across the enterprise.

4 NESSUS The latest version of Nessus introduces multi-scanner support and the ability to control internal and external scans from the cloud, as well as several enhancements to the vulnerability output. You can use your own Nessus server to act as the primary, or you can configure your Nessus Perimeter Service scanner in the cloud to be the primary. The results of scans being run on secondary servers are all displayed on the primary server. The server which ran the scan is designated in the results. With the Enterprise version you can share the results of multiple scanners between multiple users. NESSUS ENTERPRISE CLOUD This cloud-based service has the world s largest and a continuously-updated library of vulnerability and configuration checks. The Nessus Enterprise Cloud includes a centralized administration of multiple Nessus scanners with a multi-scanner support to provide access of Nessus scanners on premise. Furthermore resources like scanners, policies, schedules and reports are shared among multiple users across groups. Enterprise Cloud provides quarterly external network scans to fulfill PCI external scanning requirements for all merchants and service providers.

5 PASSIVE VULNERABILITY SCANNER The Tenable Passive Vulnerability Scanner (PVS) is an analysis tool that delivers continuous real-time network profiling and monitoring in a non-intrusive manner, at the packet layer to determine topology, services and vulnerabilities. Passive Vulnerability Scanner offers extensive web and FTP activity monitoring through direct analysis of the packet stream. Passive Vulnerability Scanner also can look at network traffic and identify SQL devices, vulnerabilities associated with them and log this activity in real-time. SECURITYCENTER For organizations with large and complex networks, SecurityCenter combines the power of Nessus scanning with an enterprise-class vulnerability management platform. The SecurityCenter accelerates and simplifies vulnerability and compliance management, with a single console managing distributed Nessus scans and providing advanced analytics and dashboards. A unique combination of active Nessus scanning, passive PVS detection, and log analysis that discovers and classifies IT assets across the enterprise.

6 SECU SERVICES Starter Package One external scan and/or One internal scan A report is delivered and the data is reviewed and evaluated Basic Package Implementation, configuration and setting up features Configuration of reporting 12 months of system upgrades (license required) Managed Package Basic package Experienced security consultants evaluate the scan results on a regular basis and provide prioritized remedation s (cleanups) Call us to get a demo of the Tenable product portfolio on

7 ABOUT TENABLE The Tenable platform has evolved into today s most powerful vulnerability and threat detection technology. Tenable SecurityCenter is the trusted cybersecurity platform in use throughout the U.S. Department of Defense, and by many of the Fortune 500 s. These institutions trust Tenable to alert them to threats that could bring down their networks. Nessus, the heart of Tenable s platform, has more than one million users protecting almost every major enterprise network in the world. ABOUT SECU Secu is a dedicated IT security company providing secure and highly available IT security solutions. We work closely with our clients, and assist them throughout the whole process from planning, implementation, operation over evaluation of the provided service. We thrive when things get complicated, and our ambition is to make security look easy for you. Our mission is to create, operate and optimize best-of-breed IT security solutions, while contributing with knowledge that supports our customers business areas. We have the experience and skills needed to take responsibility for implementing and designing, even the largest and most complex installations. Our customers covers all segments, sizes and complexities. Secu A/S A. P. Møllers Allé 17, 1. DK-2791 Dragør