complete - flexible – unique€¦ · secunia.com secunia csi 7 corporate software inspector...
TRANSCRIPT
secunia.com
Secunia CSI 7Corporate Software Inspector
Complete Patch ManagementComplete - Flexible – Unique
Brief
secunia.com
PSI for Android SC2012 Plugin 2.0Patch Configuration Smart Groups 2.0
CSI 7.0 HIGHLIGHTS • Smart Groups 2.0• Patch Configuration• User Management• Web Console (SaaS)• Live Update• PSI for Android• Password Policy Configuration
Add-ons• Secunia SC2012 Plugin • Zero-Day Vulnerability Support
Take control of the vulnerability threat and optimize your IT security investments.
The Secunia CSI gives you the when, the where, the what and the how.
• Automatic identification of vulnerabilities in your infrastructure (across endpoints and servers) using Smart Groups, which you can edit to match your specific requirements
• Prioritized patching efforts according to risk exposure, mitigation, and compliance standards
• Optimized workflow and remediation process through integration with patch deployment tools and automatic patch repackaging
• Complete overview of all programs, both Microsoft and third-party, installed on your network
• Patching of third-party programs through existing patch deployment tools (for example WSUS, SCCM, Altiris)
The Secunia CSI 7.0 combines scanning and patching, thereby meeting the requirements of both IT security and IT operations. This combination of vulnerability intelligence, vulnerability scanning, patch creation and patch deployment integration is
unique in the industry.
secunia.com
A process to identify vulnerable programs, including programs not authorized in a corporate environment, paired with targeted patch management is an absolute must to reduce the window of exposure and eliminate the root cause of a potential compromise.
But patching of vulnerable programs, in particular third-party programs which are not supported by Microsoft System Center Configuration Manager, is a cumbersome and resource intensive process causing many enterprises to either neglect patching or only patch very few third-party programs. This leaves the organization exposed: It only takes one vulnerability to compromise security. A security breach can lead to unplanned downtime, loss or exposure of sensitive data, damage to brand/reputation and loss of end-user productivityThe Secunia CSI 7.0 is a vulnerability and patch management solution that combines vulnerability
intelligence and vulnerability scanning with patch creation and patch deployment to complete the patch management process.
It provides organizations with a complete overview of their vulnerability threat landscape, identifies program vulnerabilities and guides them on how best to prioritize and implement remediation efforts, while leveraging and maximizing existing security investments in current Client Management (CM), Security Information & Event Management (SIEM), and Governance Risk & Compliance (GRC) tools.
The Secunia CSI provides the reliable, comprehensive, and up-to-date vulnerability intelligence and highly accurate scan results needed by IT-operations and security teams to effectively manage the threat posed by unpatched vulnerabilities.
Vulnerability and Patch Management are critical components of any security infrastructure because it enables proactive detection and remediation of vulnerabilities.
VIVULNERABILITYINTELLIGENCE
VSVULNERABILITY
SCANNING
PCPATCH
CREATION
PDPATCH
DEPLOYMENT
PMCOMPLETE PATCH
MANAGEMENT
VIVULNERABILITYINTELLIGENCE
VSVULNERABILITYSCANNING
PCPATCHCREATION
PDPATCHDEPLOYMENT
PMCOMPLETE PATCHMANAGEMENT
secunia.com
Management• Comply with regulatory standards (for
example PCI-DSS or NERC-CIP) on patching of programs
• Utilize existing infrastructure to enforce security levels, i.e. Microsoft System Center
• Configuration integration for third-party patching
• Enable policy enforcement and document your compliance efforts in case of a breach
• Receive validated intelligence provided by an independent third-party vendor (Secunia)
Operations• Overview of installed programs’ security state
across endpoints and servers • Scan and patch non-Microsoft programs
cross-platform • Automatic package creation by Secunia
Research • Prioritize patching efforts according to
criticality of vulnerability based on Secunia VI • Access to out-of-the-box patches
Security • Secure off-site assets • Cross-platform scanning • Pinpointing the exact vulnerabilities affecting
the network • Providing in-depth details about vulnerabilities • Audit, enforce, and document patching levels • Verify security levels across Microsoft, third-
party and own (custom) programs
What’s in it for you? Feature Highlights
Visit us at secunia.com
facebook.com/secunia
gplus.to/secunia
twitter.com/secunia
linkedin.com/company/secunia
Coverage• Scans and assesses the security state of
practically all legitimate programs running on Microsoft Windows platforms
• Support for scanning of Windows, Apple Mac OSX, Red Hat Enterprise Linux (RHEL), and Android platforms
• Scans custom programs (non-public) • Sources the Secunia Vulnerability Intelligence
Database that covers all off-the-shelf programs
Overview • Uses Smart Groups to filter and segment
data to prioritize what is important for you based on products, devices or advisories.
• Exact mapping of infrastructure and users to ensure the environment is in sync
• Create user accounts with different roles and permissions
• Immediate overview of how a new vulnerability affects you based on latest scan results
Integration • Manage and publish packages using third-
party patch deployment solutions such as Microsoft WSUS/ System Center 2012 or Altiris
• Active Directory (AD) changes can be automatically updated in the Secunia CSI
• Source Microsoft System Center Configuration Manaager for inventory without installing agents and configuring the Secunia CSI
• Integration with the Secunia Vulnerability Intelligence Manager (VIM) to automatically create and update asset lists based on the Secunia CSI scan result
• PSI 3.0 integration for management of decentralized PCs
• PSI for Android integration for management of decentralized Android devices