BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Going Beyond SCAP for Benchmark Compliance

Posted February 24, 2014    Morey Haber

SCAP configuration compliance assessments, commonly referred to as “Benchmark” assessments, are traditionally cumbersome tasks when multiple benchmarks have to be tested against multiple targets at the same time. For the vast majority of SCAP-certified tools, this means executing one benchmark at a time against a valid host(s) and reviewing the results. The same targets often require multiple benchmarks, necessitating multiple scans and jobs that can eat up a lot of time. We’ve solved this problem with the Configuration Compliance Module, part of the Retina CS Enterprise Vulnerability Management capabilities under the BeyondInsight IT Risk Management Platform.

The Configuration Compliance Module includes the capability to select multiple SCAP Benchmarks against multiple targets (i.e., “Smart Groups”) to assess each and every target for compliance. The results comply with SCAP standards for XCCDF, ARF, Micro AFR, and NIST ARF export per benchmark, even though all benchmark assessments occur simultaneously. For example, a user can select multiple benchmarks for a group of assets …

SCAPblog-img1

… and then schedule the benchmark assessments to execute in succession – completely  hands free! Finally, when the job is done, the data can be exported into several report formats or viewed online:

SCAPblog-img2

Benchmark assessments for configuration compliance just became a whole lot easier with BeyondInsight. Target groups can easily be defined, multiple benchmarks executed simultaneously, and the results exported after the scan to any format required for DIACAP, FISMA or NIST compliance.

BeyondTrust is simplifying configuration compliance, making it easier to meet standards and simpler to manage the security requirements you face on a daily basis. We would be happy to demonstrate how this can save you time and resources while helping to fulfill your compliance mandates.

> Learn more about the Configuration Compliance Module

Tags:
, , , , , ,

Leave a Reply

Additional articles

ovum-research

New Analyst SWOT Assessment Identifies Key Strengths of PowerBroker

Posted November 24, 2014    Scott Lang

Following on the heels of the Gartner PAM market guide and Frost & Sullivan review of Password Safe comes a new analyst review of our BeyondInsight and PowerBroker platforms, a SWOT assessment of BeyondTrust written by Ovum. Ovum’s honest and thorough review of BeyondTrust indicates that we are delivering, “…an integrated, one-stop approach to PAM….

Tags:
, , ,

Patented Windows privilege management brings you unmatched benefits

Posted November 24, 2014    Scott Lang

We are pleased to announce that BeyondTrust has been granted a new U.S. Patent (No. 8,850,549) for privilege management, validating our approach to helping our customers achieve least privilege in Windows environments. The methods and systems that we employ for controlling access to resources and privileges per process are unique to BeyondTrust PowerBroker for Windows….

Tags:
6

A Quick Look at MS14-068

Posted November 20, 2014    BeyondTrust Research Team

Microsoft recently released an out of band patch for Kerberos.  Taking a look at the Microsoft security bulletin, it seems like there is some kind of issue with Kerberos signatures related to tickets. Further information is available in the Microsoft SRD Blogpost So it looks like there is an issue with PAC signatures.  But what…

Tags:
, , , ,