Vulnerability Management

The Business Problem

According to the US Computer Emergency Response Team (CERT) Coordination Center, 99 percent of all network attacks exploit known software and hardware vulnerabilities and misconfigurations. But the increasing number of known vulnerabilities (on average 10 new vulnerabilities are entered in the National Vulnerability Database every day), presents IT and security professionals with a continuing challenge to discover and fix these vulnerabilities before hackers can exploit them. Issues faced by IT include:

• Lack of current visibility into the network to discover assets, their configurations, and vulnerabilities
• Lack of continuous control of assets to fix vulnerabilities and enforce secure configurations ongoing
• Narrow vulnerability management scope, focused only on patch management
• The effectiveness of automated network attacks such as the Zotob and Blaster worms, as well as recent high-profile compromises of confidential, personal and financial data clearly demonstrate the need for improved enterprise vulnerability management tools and processes.

The BigFix Solution

BigFix Enterprise Suite Vulnerability Management provides real-time policy and regulatory compliance to ensure that asset configurations conform to company policy on both desktop and mobile endpoint devices.

• Delivers comprehensive real-time visibility into the configuration and security posture of managed assets
• Continuously checks managed assets for policy exceptions, vulnerabilities and exposures using security configuration assessment based on policies, standards and best practices
• Replaces uncoordinated manual remediation with centralized management and control over computer configurations enterprise wide
• Reports and tracks security and compliance at every level of the enterprise network
• Enhances the security of Windows, Unix and Linux operating systems and common Windows applications including Microsoft SQL Server, Internet Information Services (IIS), Internet Explorer and Outlook
• Discovers and reports network assets not otherwise managed through the BigFix platform

BigFix Enterprise Suite Vulnerability Management enables efficient vulnerability risk management. The solution includes features to analyze vulnerability risks by business unit, geography, technology or other customer-defined properties. Fully customizable asset groupings and enable assessment, auditing and remediation of assets in the way that makes the most sense to achieve customer-specific objectives, priorities and business needs.

Buying Guide

BigFix Enterprise Suite Vulnerability Management—Offers SANS Top 10 for Vulnerabilities to Windows, Windows secure configuration detection and remediation, and real-time vulnerability assessment for Windows, Solaris OS, and Red Hat Linux.

BigFix Enterprise Suite Asset Discovery—Detection, reporting, and tracking of unmanaged and network assets.

BigFix Enterprise Suite platform—The highly scalable, real-time foundation for BigFix configuration management and security solutions. The BigFix Enterprise Suite platform is a prerequisite to Vulnerability Management products.

Find Out More