Tenable Expands Coverage of CIS Certifications.Tenable's Configuration Auditing Capability expanded to support additional Enterprise-Level CIS Cis (sĭs), same as Kish (1.) (1) (CompuServe Information Service) See CompuServe. (2) (Card Information S Audits COLUMBIA, Md. -- Tenable ten·a·ble adj. 1. Capable of being maintained in argument; rationally defensible: a tenable theory. 2. Network Security, Inc., the leader in unified security monitoring and creator of the popular and award-winning Nessus vulnerability scanner A vulnerability scanner is a computer program designed to search for and map systems for weaknesses in an application, computer or network. Step 1, typically the scanner will first look for active IP addresses, open ports, OSes and any applications running. , today announced that Tenable Security Center v3.2 and Nessus 3 v3.0 have been certified by the Center for Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. (CIS) to conduct CIS Certified agent-less configuration audits for the following CIS Benchmarks: * CIS Level 1 Benchmark for Red Hat Enterprise Linux Red Hat Enterprise Linux (often abbreviated to RHEL) is a Linux distribution produced by Red Hat and targeted toward the commercial market, including mainframes. Red Hat commits to supporting each version of RHEL for 7 years after its release. v1.0.5 * FreeBSD Benchmark v1.0.5, * Windows Server 2003 Member Server v1.2 - Legacy * Windows Server 2003 Member Server v1.2 - Enterprise * Windows Server 2003 Member Server v1.2 - Specialized Security Named "best benchmarking effort" by Information Security Magazine, CIS benchmarks are developed by global consensus among hundreds of security professionals as recommendations for minimum due care and preferred practice security configurations. Benchmarks are based on recommendations from the SANS Institute, the National Security Agency (NSA NSA abbr. National Security Agency Noun 1. NSA - the United States cryptologic organization that coordinates and directs highly specialized activities to protect United States information systems and to produce foreign ), the National Institute of Standards and Technology National Institute of Standards and Technology, governmental agency within the U.S. Dept. of Commerce with the mission of "working with industry to develop and apply technology, measurements, and standards" in the national interest. (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ), the U.S. Defense Information Systems Agency (DISA 1. (body) DISA - Defense Information Systems Agency. 2. (standard) DISA - Data Interchange Standards Association. ), Information Systems Audit and Control Association's COBIT (Control OBjectives for Information and related Technology) A business-oriented set of standards for guiding management in the sound use of information technology from the Information Systems Audit and Control Association (ISACA) (www.isaca.org). . "With the rapid proliferation of system and network vulnerabilities, security professionals are hard-pressed to continually ensure the stability of their IT infrastructures," said Clint Kreitner, president and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of CIS. "By earning these additional CIS certification, Tenable Network Security's customers are assured that audits of RedHat, FreeBSD and Windows Server 2003 are in accordance with the security benchmarks defined by user consensus. In addition, we are pleased that Tenable's certification will provide these additional CIS Benchmarks to Nessus' broad and global user community." "With today's focus shifting from protecting the network to protecting the data, it is essential to have these consistent controls in place as part of an enterprise compliance program," said Ron Gula, CEO of Tenable Network Security. "In receiving additional CIS certifications, Tenable's customers are assured that Security Center and Nessus 3 accurately and thoroughly compare and report the security settings of their systems to the recommendations in the relevant CIS Benchmark(s). Configuration audit, along with sensitive data discovery, ensure an organization's ability to be compliant with both corporate and regulatory policies." The CIS Certified benchmark checks are available immediately at no additional charge to Tenable Security Center users and Nessus Direct Feed subscribers. For more information on Tenable's Security Center and CIS Benchmarks, please visit: http://www.tenablesecurity.com/products/sc.shtml. To enable your Nessus 3 to perform CIS audits, please visit: http://www.tenablesecurity.com/products/direct.shtml. About the Center for Internet Security (CIS) CIS is a non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls. CIS members develop and encourage the widespread use of security configuration benchmarks through a global consensus process involving participants from the public and private sectors. For additional information, please visit http://www.cisecurity.org. About Tenable Network Security Tenable Network Security is the leader in unified security monitoring. Tenable provides agentless solutions for continuous monitoring of vulnerabilities, configurations, data leakage, and log analysis and compromise detection. Tenable's award-winning products are utilized by many Global 2000 organizations and Government agencies to proactively minimize network risk. For more information, please visit: http://www.tenablesecurity.com. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion