BIGFIX UNVEILS SECUIRTY CONFIGURATION MANAGEMENT SUITE.BigFix, Emeryville, Calif., a provider of enterprise security configuration management solutions, has unveiled the BigFix Vulnerability and Security Configuration Management Suite, a comprehensive, single-agent, single-point-of-management approach to integrating multiple IT vulnerability and configuration detection, analysis, remediation and management functions. By aggregating a complete array of vulnerability management services on a single shared infrastructure, the BigFix solution helps customers remediate vulnerabilities quickly and surgically regardless of whether the vulnerability impacts only a few computers or strikes enterprise-wide, while at the same time reducing IT infrastructure management cost and complexity. IT organizations and executives recognize that failing to rapidly find and fix vulnerabilities can disrupt business operations Business operations are those activities involved in the running of a business for the purpose of producing value for the stakeholders. Compare business processes. The outcome of business operations is the harvesting of value from assets and interfere with attainment of compliance requirements Compliance requirements are a series of directives established by United States Federal government agencies that summarize hundreds of Federal laws and regulations applicable to Federal assistance (also known as Federal aid or Federal funds). . Furthermore, piecemeal approaches that address only individual sources of vulnerabilities -- antivirus/anti-spyware client management, asset discovery, network access control, policy enforcement, software configuration and patch, etc. -- may require redundant infrastructure, can be complex to administer and often result in inconsistent coverage of vulnerability risks. "TRW TRW The Real World (TV reality show) TRW The Right Way TRW Tactical Reconnaissance Wing TRW The Retriever Weekly (University of Maryland, Baltimore, MD) TRW Thompson Ramo Wooldridge Inc has over 200 locations and more than 25,000 desktop and mobile PCs, so we require a comprehensive vulnerability management solution with the breadth of offerings and proven scalability to meet our needs. With our deployment of BigFix, we were able to automatically find and remove many types of vulnerabilities, which enables us to keep running without interruption even as we make IT changes to keep up with the pace of change in our business," said Joe Drouin, CIO CIO: see American Federation of Labor and Congress of Industrial Organizations. (Chief Information Officer) The executive officer in charge of information processing in an organization. at TRW Automotive
On 12th December 12 2002, Northrop Grumman acquired TRW Inc. An 80.1% stake (later increased to more than 90%) in TRW Automotive Holdings, including the former LucasVarity Automotive, was spun off to . The BigFix Vulnerability and Security Configuration Management Suite offers a feature-rich solution that does the following: -- Enables IT to quickly discover assets, configurations, and vulnerabilities; -- Provides ongoing control of managed computing assets to fix vulnerabilities; and -- Continually enforces secure configurations. Furthermore, to reduce complexity and cost while improving the effectiveness of vulnerability and configuration management services, the BigFix solution delivers multiple capabilities using a single intelligent agent that helps reduce vulnerability risk windows from days or weeks to minutes. "IT security organizations should implement a vulnerability management process that includes a vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. and a security configuration baseline. The root cause of vulnerabilities should be identified and eliminated through improvements in network, server and PC configuration polices and better change management and administrative processes," commented Mark Nicolett, vice president of research at Gartner in his research report*. Solution features and Benefits Overview The BigFix Vulnerability and Security Configuration Management Suite includes the following: -- Full spectrum multi-vulnerability, multi-platform coverage: Addresses a wide range of vulnerability issues including viruses, worms, spyware, network access control, rogue asset detection, software patch for multiple client hardware/software platforms including Microsoft Windows See Windows. (operating system) Microsoft Windows - Microsoft's proprietary window system and user interface software released in 1985 to run on top of MS-DOS. Widely criticised for being too slow (hence "Windoze", "Microsloth Windows") on the machines available then. , Unix, Linux and Mac OS X. -- Asset discovery: Allows customers to discover unmanaged computers and rogue wireless access points that could introduce vulnerabilities into enterprise networks. -- Security standards and best practices, including configuration compliance templates and baselines: Helps organizations to achieve enterprise-wide compliance with accepted configuration and compliance standards based on best practices identified by BigFix, the SANS Institute The SANS Institute (SysAdmin, Audit, Networking, and Security) is a trade name owned by the for-profit Escal Institute of Advanced Technologies. SANS provides computer security training, professional certification, and a research archive. , Microsoft, and emerging standards such as those defined by the National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ). -- Client compliance for network access control: Helps protect customer networks by providing configuration visibility, compliance assessment, and automatic remediation in cooperation with Cisco Network Admission Control (CNAC CNAC China National Aviation Corporation CNAC Canadian Network for Asthma Care CNAC Cisco Network Admission Control CNAC Car Now Acceptance Company CNAC Center for Naval Analyses Corporation (Alexandria, VA) ), Microsoft Network See MSN. Microsoft Network - The Microsoft Network Access Protection (NAP), and other leading network quarantine products. -- Vulnerability assessment and remediation: Helps IT departments assess and remediate operating system operating system (OS) Software that controls the operation of a computer, directs the input and output of data, keeps track of files, and controls the processing of computer programs. and application vulnerabilities and configuration issues that may disrupt operational continuity. Detects and remediates vulnerabilities identified by the SANS Institute and over one thousand vulnerabilities included in a consensus library standard sponsored by the Department of Homeland Security Noun 1. Department of Homeland Security - the federal department that administers all matters relating to homeland security Homeland Security executive department - a federal department in the executive branch of the government of the United States US-CERT (United States-Computer Emergency Readiness Team) The group charged with protecting the U.S. Internet infrastructure by coordinating defense against and response to cyberattacks. organization. -- Vulnerability prioritization: Helps administrators prioritize remediations based on administrators' view of assets' criticality to the business. This also provides vulnerability severity information as defined by the Common Vulnerability Scoring System Noun 1. scoring system - a system of classifying according to quality or merit or amount rating system classification system - a system for classifying things (CVSS CVSS Common Vulnerability Scoring System CVSS Currumbin Valley State School (Gold Coast, Australia) ) for thousands of OS, configuration, and application vulnerabilities on Windows, Unix and Linux computers. -- Endpoint security: Helps protect the network and distributed computing assets whether off or on the network through continuous monitoring and immediate vulnerability remediation at the endpoint. Includes anti-spyware, antivirus, patch management, personal firewall management, and the ability to disable use of removable drives, wireless and other networking cards, USB USB in full Universal Serial Bus Type of serial bus that allows peripheral devices (disks, modems, printers, digitizers, data gloves, etc.) to be easily connected to a computer. devices, removable disks, CD readers/writer drives, serial devices and parallel devices. -- Expanded patch management support: Helps reduce windows-of-vulnerability through automated distribution of pre-packaged and pre-tested patches. Includes enhanced support for Linux systems. "Despite heightened awareness about the business impact of security vulnerabilities, companies still face significant financial losses and regulatory risks due to existing approaches that are expensive and difficult to use, or cannot provide the real-time visibility and control required to keep pace with new threats," said George Kellar, chief marketing officer, BigFix, Inc. "BigFix Vulnerability and Security Configuration Management Suite helps our customers meet security needs by providing a scalable, easy-to-deploy solution to rapidly discover and remove vulnerabilities. Our single architecture approach results in a more resilient and reliable IT infrastructure at lower cost, and improves security and compliance with regulatory and organizational policies." BigFix Customer Value Proposition Founded in 1997, BigFix provides comprehensive and innovative vulnerability and security configuration management solutions for real-time visibility and control of computers across the distributed enterprise. BigFix solutions are proven in production at more than 500 enterprises, government agencies and public sector institutions worldwide and currently manage over 5,000,000 servers, desktop workstations, and mobile laptops. The company has received numerous awards and industry recognitions, including the 2005 Codie Award for Best Security Product and the SC Magazine Best New Security Solution for 2004. About BigFix, Inc. BigFix enables organizations to better manage their global IT infrastructures with solutions to discover, analyze, change and maintain security and software configurations faster and more accurately, resulting in improved processes, greater visibility, better security and more reliable services while reducing costs. For more information, call 415/625-8555 or visit http://www.bigfix.com. |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion