Complete Patch Management



Similar documents
Complete Patch Management

Complete Patch Management

EXTENSIVE FEATURE DESCRIPTION SECUNIA CORPORATE SOFTWARE INSPECTOR. Non-intrusive, authenticated scanning for OT & IT environments. secunia.

Secunia Corporate Software Inspector (CSI)

Secunia Corporate Software Inspector (Secunia CSI) ver.5.0

Managing non-microsoft updates

Secunia Vulnerability Intelligence Manager (VIM) 4.0

Kaseya IT Automation Framework

Patch Management Reference

Product comparison. GFI LanGuard 2014 vs. Microsoft Windows Server Update Services 3.0 SP2

Vulnerability Intelligence & 3 rd party patch management

ManageEngine Desktop Central Training

How To Deploy Software Updates Using SCCM 2012 R2

Enterprise IT is complex. Today, IT infrastructure spans the physical, the virtual and applications, and crosses public, private and hybrid clouds.

Intelligent Power Protector User manual extension for Microsoft Virtual architectures: Hyper-V 6.0 Manager Hyper-V Server (R1&R2)

Secunia Vulnerability Intelligence Manager

Best Practices. Understanding BeyondTrust Patch Management

Vistara Lifecycle Management

BeyondInsight Version 5.6 New and Updated Features

SANS Top 20 Critical Controls for Effective Cyber Defense

Staying Secure After Microsoft Windows Server 2003 Reaches End of Life. Trevor Richmond, Sales Engineer Trend Micro

Patch Management Reference

Dell UPS Local Node Manager USER'S GUIDE EXTENSION FOR MICROSOFT VIRTUAL ARCHITECTURES Dellups.com

Altiris Patch Management Solution for Linux 7.1 SP2 from Symantec User Guide

xassets Hosted Services Microsoft SAM Assist Audits with xassets

Secunia CSI integrated with WSUS (SCCM)

Symantec Client Management Suite 8.0

Nessus Agents. October 2015

Honeywell Industrial Cyber Security Overview and Managed Industrial Cyber Security Services Honeywell Process Solutions (HPS) June 4, 2014

AV Management Dashboard

Vulnerability Scanning and Patch Management

Identity and Access Management Integration with PowerBroker. Providing Complete Visibility and Auditing of Identities

Patch Management Reference

SUMMIT ASSET MANAGEMENT DATASHEET

Devising a Server Protection Strategy with Trend Micro

Devising a Server Protection Strategy with Trend Micro

PATCH MANAGEMENT. February The Government of the Hong Kong Special Administrative Region

CloudPassage Halo Technical Overview

SCCM How to guide deploying SCCM Client, setting up SUP and SCEP. Hans Chr. Andersen

Larry Wilson Version 1.0 November, University Cyber-security Program Critical Asset Mapping

Network device management solution

IBM Security QRadar Vulnerability Manager Version User Guide

Symantec Client Management Suite 7.5 powered by Altiris

SapphireIMS 4.0 Asset Management Feature Specification

Symantec Client Management Suite 7.6 powered by Altiris technology

NetIQ Sentinel Quick Start Guide

MCTS Guide to Microsoft Windows 7. Chapter 7 Windows 7 Security Features

Kaseya Server Instal ation User Guide June 6, 2008

Installing and Administering VMware vsphere Update Manager

Out n About! for Outlook Electronic In/Out Status Board. Administrators Guide. Version 3.x

HELPDESK & SERVER MONITORING. Helpdesk HOURS OF COVER KEY FEATURES

THE TOP 4 CONTROLS.

Microsoft Windows Apple Mac OS X

Secret Server Qualys Integration Guide

SYMANTEC DATA CENTER SECURITY: SERVER ADVANCED 6.5

Getting Started with the iscan Online Data Breach Risk Intelligence Platform

Comodo Endpoint Security Manager SME Software Version 2.1

How To Use Attix5 Pro For A Fraction Of The Cost Of A Backup

How To Achieve Pca Compliance With Redhat Enterprise Linux

mbits Network Operations Centrec

BEST PRACTICES. Systems Management.

safend a w a v e s y s t e m s c o m p a n y

SolarWinds Security Information Management in the Payment Card Industry: Using SolarWinds Log & Event Manager (LEM) to Meet PCI Requirements

Microsoft Windows Apple Mac OS X

Understanding BeyondTrust Patch Management

SysPatrol - Server Security Monitor

This document details the procedure for installing Layer8 software agents and reporting dashboards.

ForeScout CounterACT CONTINUOUS DIAGNOSTICS & MITIGATION (CDM)

Windows Server 2003 End of Support. What does it mean? What are my options?

OnCommand Performance Manager 1.1

DameWare Server. Administrator Guide

NIST CYBERSECURITY FRAMEWORK COMPLIANCE WITH OBSERVEIT

SNOW LICENSE MANAGER (7.X)... 3

Forefront Endpoint Protection. Jack Cobben

Lumeta IPsonar. Active Network Discovery, Mapping and Leak Detection for Large Distributed, Highly Complex & Sensitive Enterprise Networks

XIA Configuration Server

Goverlan Remote Control

FISMA / NIST REVISION 3 COMPLIANCE

LabTech Integration Instructions

Download/Install IDENTD

Managed Antivirus Quick Start Guide

Resolving the Top Three Patch Management Challenges

How To Secure Your System From Cyber Attacks

Information and Communication Technology. Patch Management Policy

CloudPassage Halo Technical Overview

vsphere Upgrade vsphere 6.0 EN

Medical Device Security Health Imaging Digital Capture. Security Assessment Report for the Kodak Capture Link Server V1.00

Windows Remote Access

Server Installation, Administration and Integration Guide

Lumension Endpoint Management and Security Suite

Total Protection for Compliance: Unified IT Policy Auditing

GFI White Paper PCI-DSS compliance and GFI Software products

Nessus and Mobile Device Scanning. November 7, 2014 (Revision 12)

Transcription:

Complete Management Targeted, Reliable and Cost-efficient In- Depth CSI Corporate Software Inspector

Empower your IT-Operations and Security Teams with the most reliable Vulnerability & Management solution to eliminate the Vulnerability Threat CSI 6.0 Combines Vulnerability Intelligence, Vulnerability Scanning, and Creation with Deployment Tool to Enable Targeted, Reliable, and Cost-efficient Management The CSI 6.0 is a vulnerability and patch management solution that completes the patch management process. It provides the reliable, comprehensive, and up-to-date Vulnerability Intelligence and highly accurate scan results needed by IT-operations and Security teams to proactively deal with the Vulnerability threat imposed by unpatched programs. By combining reliable Vulnerability Intelligence and Vulnerability Scanning with automated Creation and integration with your patch deployment solution, the intelligence becomes actionable in a Client Management (CM), Security Information & Event Management (SIEM), and Governance, Risk & Compliance (GRC) perspective. Further, remediation efforts become more targeted, ensuring that IT and Security Officers are focusing on the vulnerabilities that have the greatest impact on the organisation s security state. The CSI assesses the security state of practically all legitimate programs running on Microsoft Windows platforms and supports scanning of Windows, Apple Mac OSX, Red Hat Enterprise Linux (RHEL) platforms and custom software. It integrates with Microsoft WSUS & SCCM and third-party client management tools for easy deployment of third-party updates, making patching a simple and straight-forward process for all IT departments. By integrating the CSI into your infrastructure you are able to: Get an overview of installed programs across endpoints and servers Scan and patch non-microsoft programs Pinpoint the exact vulnerabilities affecting the network (location and criticality) Receive real-time alerting upon security changes Prioritize patching efforts according to the risk exposure Optimise package creation CSI 6.0 HIGHLIGHTS Scanning of Red Hat Enterprise Linux Custom scan rules Smart Groups and Smart Group notifications with third-party patch deployment solutions with Microsoft SCCM for agent-less scanning Active Directory integration

The Intelligence The CSI sources the & Vulnerability Database to assess the security state of the identified programs. offers the industry s largest Vulnerability Intelligence database where every vulnerability has been verified, assessed, corrected, and tested by a Research Specialist, before an advisory is published. The database covers both old and new vulnerabilities, ensuring a complete and comprehensive overview of the security state of the infrastructure s install base. The Vulnerability Intelligence provided for each identified program is highly detailed, revealing criticality rating, exposure time, and status (Insecure, End-of-Life or ed). The Technology The proprietary Software Inspector technology relies on an authenticated scan approach, which enables the CSI to identify all installed programs and plug-ins based on the actual files present on the system. It correlates program metadata with s comprehensive product database to build an inventory of the installed programs and plug-ins. This inventory is then correlated with vulnerability metadata based on Vulnerability Intelligence. This is an extremely reliable mapping approach and removes the flaw in identifying false-positives. The Level Of Scan There are three different scan levels that are available for you to choose. Type 1. Scans for programs in default paths. Type 2. Scans for programs on all local hard drives in all paths. Type 3. Scans all *.EXE, *.OCX, *.DLL and other relevant program files on all local hard drives. The Type Of Scan The CSI offers various scanning options designed to suit your environment: Agent-less scanning of your systems can be performed out-of-the box. When running agent-less, the CSI utilises standard Windows networking services to scan the systems on your network. The agents can also be automatically deployed through the Microsoft WSUS/SCCM integration. Agent-based scanning is more flexible. It can be used in segmented networks and to scan systems that are not always online (e.g. laptops). The agents can also be automatically deployed through the Microsoft WSUS/SCCM integration. Appliance mode offers agent-less scanning from centralised hosts; in branch offices for example. Command Line Interface mode makes it possible to schedule and manage scans using other tools (e.g. log-on scripts).

The Management Process The Management process works by looking at the actual files on the system being scanned. The result is extremely reliable as a program cannot be installed on a system without the actual files required being present. C C 1 2 The CSI scans computers in your network from a central location.exe.exe.ocx.ocx.dll.dll.exe.exe.ocx.dll.ocx It scans all executables, including EXE, OCX,.dll.exe and DLL files.exe.ocx.ocx.dll.dll.exe v. 2.2 v. 2.2.ocx v. 3.dll v. v. 2.2 3 v. 4.0 v. 2.2 v. 3 v. 4.0 v. 3 v. 2.2 v. 2.2 v. 3 v. 4.0 v. 3 v. 3 Package AB v. 3 v. 2.2 All scan results are fed into the central management console for easier analysis to give a complete overview of what is installed. B WSUS WSUS WSUS SCCM SCCM v. 4.0 v. 4.0 The CSI tells you which version to update v. 3 v. 3 Package v. B4.0 Package B v. 3 Package B Package B A Automatic repackaging 3 4 5 6a ogram v. 3 v. 3. 3.0 ogram v. 3 6b WSUS SCCM Package B Deploy patch to WSUS and verify application Package B SCCM WSUS WSUS WSUS SCCM SCCM SCCM v. 4.0 Deploy patch to SCCM and verify application

The Core Benefits Creation Packages are delivered out of the box for a number of programs, including those where the vendor does not offer silent installation parameters. The packages are created by Research Team. Deployment The CSI provides simple methods for repackaging and publishing patches for distribution via for example Microsoft WSUS. This third-party integration for patching is enabled through the SDK. The CSI can further conduct scans of desktop and server systems to ensure that updates are applied correctly and that all systems are fully compliant. Reporting The CSI s customisable dashboard gives you a complete overview of the security and compliance state of your entire corporate network, enabling you to access and organise all data and results from a single location. Smart Group Notifications Scheduled Data Export (API) Activity Log Configuration Active Directory IP Access Management VIM 3 PSI 3.0 Performance Small system footprint ensuring short scan times, smooth performance, and no limitation to the amount of scanned hosts. Scope The CSI can detect any type of software or plug-in as long as it has the correct version information from the vendor. Further, it is capable of assessing the security state of practically all legitimate programs running on Microsoft Windows platforms. It supports scanning of Windows, Apple Mac OSX, Red Hat Enterprise Linux (RHEL) platforms, and custom software.

System Requirements Supported Microsoft Operating Systems: Windows XP SP2 or later Windows Vista Windows 7 Windows Server 2003 Windows Server 2008 Windows Server 2008 R2 Running the centralised dashboard Network/Internet connection (SSL 443/tcp to csi.) 10 MB of free disk space On demand and Appliance scanning Network/Internet connection (SSL 443/tcp to csi.) Administrative privileges on target hosts Windows Update Agent 2.0 or later Workstation and Server Service started Remote Registry Service started File and Print Sharing enabled COM+ started Ports 139/tcp and 445/tcp open inbound Support And Maintenance All support questions should be addressed to the Customer Support Center csc@ A number of support and information resources have also been made available: User Forums Interact with other users by posting questions or submitting tips. Product Documentation Review product specifications, getting started guides and more. Product guide In the CSI solution Local Agent based scanning Network/Internet connection (SSL 443/tcp to csi.) Local administrative privileges 1 MB of free disk space Try CSI today! Sign up for a FREE trial by scanning this QR-code.

Feature Overview Microsoft WSUS The CSI integrates seamlessly with Microsoft Windows Server Update Services (WSUS) for easy deployment Active of third-party updates. This makes installing updates simple and straightforward due to the Directory automatic repackaging feature and the Microsoft WSUS distribution management functionality in the CSI. Microsoft SCCM The CSI integrates seamlessly with Microsoft System Center Configuration Manager (SCCM) 2007 and 2012 to help you stay compliant and up-to-date with the latest security updates from third-party vendors and Microsoft. Organisations that use MS SCCM already have agents installed on the endpoints in their environment. Instead of installing an additional agent from, these can now configure the SCCM software inventory agent to handle the scanning, which means one less agent on all their endpoints. Third-party for ing The CSI can now be easily integrated with your preferred patch deployment solution (for example, the Altiris Deployment Solution) using the Deployment SDK to allow for easy patch management (patch scanning, patch creation and patch deployment). Smart Groups Smart Groups help you prioritize your remediation efforts and stay secure and compliant by allowing you to filter and segment your data. This means that you can focus on what is relevant for you to reduce risk, stay compliant, increase the Return on Security Investment (ROSI), or whatever metrics are relevant for you. VIM Smart Group Notifications Configure email notifications and SMS alerts, so that you are immediately notified when an event occurs that is relevant to you. You might want to know if a highly critical vulnerability is not being patched within 30 days (as required to be I-DSS IP Access compliant), or you might want to be notified every Activity time an extremely critical advisory is issued that is relevant for your environment. Log PSI 3 Scanning Red Hat Enterprise Linux (RHEL) The CSI 6.0 has expanded coverage to also include scanning of Red Hat Enterprise Linux in addition to Windows and Mac OSX. Hence, users will be able to extensively cover their devices and get an even more comprehensive overview of programs and vulnerabilities in their environment with the CSI. Users can view and export the Red Hat Enterprise Linux inventory. The scan agent (Perl) for RHEL uses the inventory which is already present (RPM) and displays this in the CSI after being processed by Detection/Version Rules. Third-party Custom Software Scanning Management Red Hat Enterprise Linux SCCM Sch Data WSU Integrat Smart Groups

Custom Software Scanning The CSI can now be used to scan custom software. That is, if you have (non-public) software that has been designed for your organisation, you can use the CSI to identify exactly on which hosts this is present, and deploy updates using the Package System (SPS) together with your existing deployment solution. Scheduled Data Export Use the Exporting function to schedule automatic exports of data, for example data required to be automatically imported into a GRC tool for compliance purposes. Active Directory Automatically update organisational units and structure in the CSI when changes are made to the Active Directory, and avoid doublework and ensure that your environment is always in sync. Activity Log View a full log of all activities in the CSI, including write actions, logins, and so on. This is, for example, valuable for compliance and auditing purposes or for troubleshooting or investigating specific incidents. IP Access Management Use the IP Access Management window to configure the IP addresses the CSI console can be accessed from, thereby further limiting the risk of unauthorized access to the console and your environment. with PSI 3.0 with PSI 3.0 allows you to also manage s that are not regularly connected to your network. The PSI 3.0 provides automatic updating and a simple user interface available in multiple languages, thereby making maintenance a straight forward and easy task for all users with administrative privileges on their s. It gives administrators access to scan results from the s that are not directly under their control, and they are able to approve security updates on these s. with VIM with the Vulnerability Intelligence Manager (VIM) allows for automatically creating and updating asset lists in the VIM based on the CSI scan results, thereby allowing for easily tracking vulnerability management efforts and compliance reporting. tive ctory ration VIM Activity Log PSI 3 Custom Software Scanning IP Access Management Scheduled Data Export

About is the leading provider of IT security solutions that help businesses and private individuals globally manage and control vulnerability threats and risks across their networks and endpoints. plays an important role in the IT security ecosystem, and is the preferred supplier for enterprises and government agencies worldwide, counting Fortune 500 and Global 2000 businesses among our customer base. Contact For further information about s competencies, please contact sales@ Stay Secure. Try CSI today! Sign up for a FREE trial by scanning this QR-code. facebook.com/secunia gplus.to/secunia twitter.com/secunia linkedin.com/company/secunia Visit us at

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information