LANDESK SOLUTION BRIEF. Patch Management



Similar documents
Endpoint Security Management

High Availability Server Management

Remote Control/Problem Resolution

Remote control/problem resolution

OS Deployment and Migration

LANDesk Management Suite 8, v8.1 Creating Custom Vulnerabilities

Managing Security Risks in Modern IT Networks

Resolving the Top Three Patch Management Challenges

Proven LANDesk Solutions

How To Manage A System Vulnerability Management Program

Proactively Managing Servers with Dell KACE and Open Manage Essentials

Patch and Vulnerability Management Program

Symantec Protection Suite Enterprise Edition for Servers Complete and high performance protection where you need it

Streamlining Patch Testing and Deployment

Software License Monitoring

IBM Endpoint Manager for Server Automation

LANDesk Server Manager. Single Console Multi-Vendor Management Solution

HP ProLiant Essentials Vulnerability and Patch Management Pack Planning Guide

Reducing the cost and complexity of endpoint management

Patch Management Policy

How To Monitor Your Entire It Environment

What Do You Mean My Cloud Data Isn t Secure?

THE TOP 4 CONTROLS.

IPLocks Vulnerability Assessment: A Database Assessment Solution

Symantec Client Management Suite 8.0

Software Change Management

Computer System Security Updates

Identity and Access Management Integration with PowerBroker. Providing Complete Visibility and Auditing of Identities

Web application security Executive brief Managing a growing threat: an executive s guide to Web application security.

HP Fortify Software Security Center

McAfee Server Security

ZENworks Patch Management. Doc Hodges Opportunity Response Team Novell, Inc.

Dynamic Service Desk. Unified IT Management. Solution Overview

Kaseya IT Automation Framework

Total Protection for Compliance: Unified IT Policy Auditing

ORACLE OPS CENTER: PROVISIONING AND PATCH AUTOMATION PACK

TECHNICAL VULNERABILITY & PATCH MANAGEMENT

Simplify security management in the cloud

Radia Cloud. User Guide. For the Windows operating systems Software Version: Document Release Date: June 2014

Lumension Endpoint Management and Security Suite (LEMSS): Patch and Remediation

INTRODUCING isheriff CLOUD SECURITY

Vulnerability Management ROI Calculator User Guide. v2.0 Monday, September 29, Copyright 2008, Lumension Security

AN OVERVIEW OF VULNERABILITY SCANNERS

HP Client Automation software Starter and Standard Editions

GoldMine Datasheet Title. Subtitle: Reinvent your Sales, Marketing and Support Proceses. IT Must Innovate to Meet Rising Business Expectations

Leveraging a Maturity Model to Achieve Proactive Compliance

Kaseya White Paper. Endpoint Security. Fighting Cyber Crime with Automated, Centralized Management.

How to Make Microsoft Security Patch Testing More Efficient

PATCH MANAGEMENT. February The Government of the Hong Kong Special Administrative Region

ORACLE ENTERPRISE MANAGER 10 g CONFIGURATION MANAGEMENT PACK FOR ORACLE DATABASE

Information and Communication Technology. Patch Management Policy

LANDesk Data Analytics

System Security Policy Management: Advanced Audit Tasks

IBM Tivoli Endpoint Manager for Lifecycle Management

North American Electric Reliability Corporation (NERC) Cyber Security Standard

Dell Client. Take Control of Your Environment. Powered by Intel Core 2 processor with vpro technology

Solution Recipe: Improve PC Security and Reliability with Intel Virtualization Technology

Closing the Vulnerability Gap of Third- Party Patching

Device Lifecycle Management

LANDesk Management Suite 9.0. Getting started with Patch Manager

IBM InfoSphere Guardium Data Activity Monitor for Hadoop-based systems

Extreme Networks Security Analytics G2 Vulnerability Manager

Managed Service Plans

SUMMIT ASSET MANAGEMENT DATASHEET

How To Manage It Asset Management On Peoplesoft.Com

"Service Lifecycle Management strategies for CIOs"

Symantec Asset Management Suite 8.0

Data Sheet: Endpoint Security Symantec Network Access Control Comprehensive Endpoint Enforcement

IBM Tivoli Provisioning Manager V 7.1

McAfee epolicy Orchestrator

THE ENTERPRISE BENEFITS OF THE INDUSTRY S FIRST REMOTE MANAGEMENT SOLUTION FOR HANDHELD SCANNERS

Practical Patch Compliance

LANDesk Software: Version 8 Including Patch Management

Tips and Best Practices for Managing a Private Cloud

ORACLE VM MANAGEMENT PACK

2012 Endpoint Security Best Practices Survey

How To Manage A Privileged Account Management

DOBUS And SBL Cloud Services Brochure

Managing HP Integrity Servers with HP Server Automation and HP Virtual Server Environment

The Value of Vulnerability Management*

McAfee Total Protection Reduce the Complexity of Managing Security

LANDesk Management Suite 8.7 Extended Device Discovery

Solution Recipe: Remote PC Management Made Simple with Intel vpro Technology and Intel Active Management Technology

Transcription:

Patch Management Increase the safety, security and efficiency of critical IT systems so IT can spend less time maintaining the computing environment and more time improving it.

Develop and maintain patch level security automatically The Challenge: Your business computing environment is under siege, both from malicious attack and from ordinary maintenance issues and bugs. New hardware and software is released every day, along with the patches to repair inevitable vulnerabilities. Just keeping up with the change can be a full-time job that leaves little time for other IT tasks. Massive threat Some threats come from buggy software, some from hackers dedicated to exploiting holes in application or OS security. The massive impact of worms and viruses such as Slammer, Blaster, MyDoom and Sasser demonstrates the power of these threats, and the potential costs to business. Wherever threats come from, they pose a hazard to corporate data and productivity that IT departments must deal with. With increasing regulation that requires companies to demonstrate control over financial records and other data, these threats represent more than just an IT problem. Data security and integrity is a business issue. Information-gathering: The Great Time Sink In 2004 the Computer Emergency Response Center (CERT) at Carnegie Mellon University reported 3,780 different vulnerabilities (see www. cert.org for more information). If your security team spends only 20 minutes to evaluate each vulnerability description, that would require more than 157 full work days just to evaluate threats. Even if you skip 3/4 of those as being irrelevant, that still amounts to more than 39 work days and nothing has been downloaded, tested or installed yet. Turn information into action Developing patch security requires an enormous amount of information. Your security team needs to track hardware, software and operating systems running on each computer and which versions of drivers, applications and patches are currently installed. Then understand the nature and extent of known vulnerabilities for each platform. Then know which patches are already installed, which still need to be installed and which are irrelevant. It s not the most difficult task your security team faces, but it is among the most time consuming. Establish patch security IT needs an effective patch distribution system that can quickly identify targets, efficiently distribute patches across the network, and report successful patch installation. When remediation is complete IT needs to verify that all machines are current and secure. Then the process starts over again the very next day as new vulnerabilities are discovered and new patches are released. It never ends. Automate the process IT needs to break out of the manual assess-and-remediate loop and find a way to automate the process. OVERVIEW Business Need Keep up with the latest patches to ensure security and performance throughout the computing environment. Determine current hardware and software configurations across the enterprise Assess current vulnerability against the most current industry knowledge Review and select the right patches for each computing platform Remediate vulnerabilities quickly and efficiently to establish patch level security Proactively maintain patch currency with automated assessment and install Solution Active vulnerability assessment, remediation and patch deployment with patch and security management from LANDesk Seamless integration with LANDesk Management Suite for unified systems management Extensive vulnerability scanning to identify current state of patch security for desktops, server and mobiles Automatic evaluation of current state against industry standard databases of known vulnerabilities User-defined vulnerabilities identify unique configuration or security issues and support custom patches Easy identification and distribution of the right patches for each vulnerable computer Status monitoring to help ensure that patches are successfully installed Policy-based configuration management to keep patches up to date automatically 2

The best solution scans each computer s hardware and software configuration, then it downloads the right patches and automatically installs them on the right computers according to specific policies that your security team establishes. The best solution is fast, efficient and secure, and integrates directly with your existing systems management solution. That solution exists. The LANDesk Solution Automated patch management is available from LANDesk as a standalone solution in LANDesk Patch Manager, or as a component of both LANDesk Security Suite and LANDesk Management Suite. The LANDesk patch management solution efficiently automates vulnerability assessment, remediation and ongoing patch management. Features include: Seamless integration with other LANDesk solutions unifies key management tasks in a single, comprehensive management environment Automated assessment of systems against industry-standard information sources helps ensure complete and accurate vulnerability assessment User-defined vulnerability detection helps identify unique threats and quickly determine compliance with security standards, then optionally deliver custom patches Custom patches can be secured using an MD5 hash algorithm to help protect against tampering Console display of detected vulnerabilities eases planning, targeting and decision-making Automatic patch download and distribution package creation speeds time to resolution Pre-tested patches are verified to install and function as intended; research notes and test notes for each patch are accessible with one click Task completion, status monitoring and inventory auditing help IT ensure that patches are successfully installed Policy-based management can automatically identify, download, target, and install patches based on IT-defined rules to enable active patch management and computing security LANDesk patch management helps increase the security and efficiency of critical systems so IT can spend less time maintaining the computing environment and more time improving it. 3

Leverage existing management power LANDesk patch management leverages proven LANDesk targeting, software distribution and policy management technologies to create unmatched efficiency. Vulnerability scan results are stored in the unified database to keep data consistent and enable easy analysis and reporting on all data. That maximizes your existing investments in systems management, reduces both training and infrastructure costs, and helps keep IT working efficiently in a single, integrated console. Active assessment LANDesk patch management uses industry-standard sources to determine both machine vulnerability and patch availability. This helps ensure rapid access to current validated data. LANDesk patch management automatically checks dependencies and requirements to give you the information you need to select the right patches. You can also define custom patches to install files or applications and remediate user-defined vulnerabilities. Assign any distributable package file as a patch, along with any commands or directives needed to complete your remediation efforts. Custom patches can be secured using an MD5 hash algorithm to help protect against tampering and ensure that the patch you created is the one that s delivered. Controlled automation You can choose full automation for hands-off patch management, or you can step through the assessment and remediation process only after you ve made explicit decisions. It s accepted best practice, for example, to test patches for critical servers before deployment to ensure that the patch itself doesn t interfere with other processes or services. Similarly, some patches may address issues that are irrelevant in your environment and can be safely skipped. LANDesk patch management gives you the choice to do it your way. Manually building and deploying patches is a very labor-intensive process. LANDesk saves us at least 280 man-hours per patch. EDWARD SKAFF EXEMPLA HEALTH CARE MANAGER Patches are pre-tested and verified to install and function as intended. Test notes and additional research is available with a click of the mouse. There s no need for IT staff to search news boards or rely on vendors to send out their own patch announcements. LANDesk patch management searches out the latest data and automatically evaluates systems against known vulnerabilities. User-defined vulnerabilities LANDesk patch management gives you the ability to define custom vulnerability rules that quickly detect and identify security issues, configuration problems, missing files and more. Define rules for specific operating systems so you can quickly identify variances to corporate, industry or regulatory standards and quickly remedy any problems. Efficient remediation Once vulnerabilities are identified, you can choose how to remediate them. View by platform, application, computer or detected vulnerability to quickly and easily select targets. Begin remediation with a mouse click. Choose to distribute packages to specific computers using the task scheduler, define configuration policies automatically install needed patches throughout the network, or choose autofix for fully automated hands-off remediation for all vulnerable computers. LANDesk patch management can take advantage of exclusive LANDesk Targeted Multicast and Peer Download technologies to minimize network impact, increase patch 4

availability and speed deployment to all affected machines at once. The LANDesk patch management solution monitors the status of each install and displays that status on-screen so you can quickly and easily track remediation and ensure that each patch reaches its target. When remediation is complete, IT can audit each target machine to ensure correct configuration and report successful remediation. The result is that most patches can be installed quickly, easily and automatically while IT works on other tasks. IT can spend time only on those machines that require it. Policy-based maintenance Once current vulnerabilities are assessed and remediated, IT can use powerful policy-based configuration management tools to automate patch maintenance. LANDesk patch management can leverage application policies to assess and remediate a machine s vulnerabilities based on OS, configuration, organizational role or any LDAP attribute tracked by your directory service system. Because policy-based management can implement policies based on both machine inventory and directory service attributes, IT can refine policies as needed to ensure patch security and currency. Heterogeneous platform support LANDesk patch management supports both client and server platforms for a wide variety of operating systems. Broad platform support helps ensure that the entire enterprise is kept up to date, not just machines running a particular OS. Extended language support means you can protect your IT assets wherever they might be. Rapid results LANDesk patch management can begin vulnerability assessment and remediation from the moment it s installed, and can begin remediation on the very first day. The result is that IT can quickly implement and maintain patch-level security across the enterprise in only a few days. Integrated Solution LANDesk patch management seamlessly integrates with LANDesk Management Suite to provide not only quick vulnerability assessment, but rapid remediation and hands-off maintenance automatically. By leveraging existing software deployment and automated policy management, LANDesk patch management enables a level of efficiency and control that s virtually impossible with standalone products or bolt-on tools. Download a fully functioning 100-node, time-limited product trial so you can see for yourself how LANDesk solutions can help ease your systems management pain from the first day of deployment. http:/// LANDesk Leading Patch Management Solutions LANDesk is an industry leading provider of easy to use, integrated solutions for desktop, server and mobile device management. LANDesk solutions are proven, with millions of managed nodes deployed worldwide. Find out for yourself. Call or visit our Web site to learn more about LANDesk solutions, then download a fully functioning 100-node, time-limited product trial so you can see for yourself how LANDesk solutions can ease your systems management pain from the very first day. 5

Corporate Headquarters 698 West 10000 South Suite 500 South Jordan, Utah 84095 FOR PRODUCT INFORMATION Brazil... + (55 11) 3048-4080 Canada...+ 1-800-982-2130 China...+ 8610-8518-3138 Europe... + 44 (0) 118-902-6200 France...0810 000 212 Ireland... + 353 (0)1 809-4268 Italy...+ 39 (02) 72 54 64 64 Japan... + 81 (3) 3435-8261 Mexico...+ 52-55-5448-4933 U.S....+ 1-800-982-2130 THIS INFORMATION IS PROVIDED IN CONNECTION WITH LANDESK SOFTWARE PRODUCTS. NO LICENSE, EXPRESS OR IMPLIED, BY ESTOPPEL OR OTHERWISE, OR WARRANTY IS GRANTED BY THIS DOCUMENT. LANDESK SOFTWARE DOES NOT WARRANT THAT THIS MATERIAL IS ERROR FREE, AND LANDESK SOFTWARE RESERVES THE RIGHT TO UPDATE, CORRECT OR MODIFY THIS MATERIAL, INCLUDING ANY SPECIFICATIONS AND PRODUCT DESCRIPTIONS, AT ANY TIME, WITHOUT NOTICE. FOR THE MOST CURRENT PRODUCT INFORMATION, VISIT HTTP://WWW.LANDESK.COM. COPYRIGHT 2004 LANDESK SOFTWARE, LTD. OR ITS AFFILIATES. ALL RIGHTS RESERVED. LANDESK, TARGETED MULTICAST AND PEER DOWNLOAD ARE REGISTERED TRADEMARKS OR TRADEMARKS OF LANDESK SOFTWARE, LTD. OR ITS AFFILIATES IN THE UNITED STATES AND/OR OTHER COUNTRIES. EACH CUSTOMER S RESULTS MAY VARY BASED ON ITS UNIQUE SET OF FACTS AND CIRCUMSTANCES. *OTHER NAMES OR BRANDS MAY BE CLAIMED AS THE PROPERTY OF OTHERS. LSI-0329 0505/SP/JA

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information