XACTA ENHANCES SOFTWARE WITH REAL-TIME VULNERABILITY INFO.Xacta Corporation, a supplier of information security compliance assessment and management solutions, has reached an agreement with SecurityGlobal.net.LLC (Logical Link Control) See "LANs" under data link protocol. LLC - Logical Link Control to integrate its SecurityTracker vulnerability alert service with Xacta Web C&A[TM] and Xacta Commerce Trust[TM] software products. As a result, Xacta's software now provides detailed vulnerability information that is tailored to address the specific system configurations and enterprise needs of each Xacta customer. The vulnerability information, which is drawn from thousands of sources worldwide, includes detailed analyses, safeguards, and validation of threats and fixes. "We are pleased to announce this agreement with SecurityGlobal, one of the leading security intelligence services companies," said David Aldrich, President and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of Xacta Corporation. "By integrating this vulnerability information directly into our product at no extra charge, we provide our customers with a true value-add. We provide them the information they need to prevent or mitigate the impact of potential attacks, as well as eliminate the time and cost associated with performing such research themselves or paying a third party to do it for them." "SecurityTracker is excited to be working with Xacta," said Stuart Moore, CEO of SecurityGlobal. "Xacta's strength in helping its customers better understand and manage their information security risk posture and SecurityTracker's expertise in researching and mitigating vulnerabilities make for a powerful combination." Xacta's software products empower empower verb To encourage or provide a person with the means or information to become involved in solving his/her own problems organizations with a mechanism for assessing and improving information security risk posture in accordance with government and industry standards (DITSCAP DITSCAP DoD Information Technology Security Certification and Accreditation Process (DoD Instruction 5200.40) DITSCAP Defense Information Technology Security Certification and Accreditation Process , NIACAP NIACAP National Information Assurance Certification and Accreditation Process , BS ISO/IEC ISO/IEC International Organization for Standardization/International Electrotechnical Commission (ITU-T M 3000) 17799, and BS 7799 Part 2). The software guides the user through a step-by-step risk assessment process to document system configuration, identify pertinent security requirements, perform testing, understand and prioritize pri·or·i·tize v. pri·or·i·tized, pri·or·i·tiz·ing, pri·or·i·tiz·es Usage Problem v.tr. To arrange or deal with in order of importance. v.intr. risks, and generate documentation and reports. All information generated throughout the risk assessment process is stored in the software's database, greatly simplifying the execution of follow on risk assessment activities. The software automatically correlates the system configuration information stored within the database with the near real-time vulnerability information provided through SecurityTracker. Users are notified immediately via email of vulnerabilities that may impact hardware/software within their organizations. Alerts will soon be available by fax, pager or cell phone, depending on preference. As new equipment is added to the network, it is automatically checked against the knowledge base of known vulnerabilities A bug in software that has been identified. It typically refers to bugs that have been used for malicious purposes. For example, bugs in Web server, Web browser and e-mail client software are widely exploited by attackers. . |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion