BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.

Now Available! Direct Integration from Retina CS into RSA Archer eGRC

Posted June 1, 2012    Morey Haber

Yet another first for BeyondTrust and eEye Digital Security. Our combined companies are proud to release our first new direct integration from Retina CS into RSA Archer eGRC. The business value provides comprehensive vulnerability management data directly into Archer’s Threat Management system. Using direct database access from Archer’s Integration System, the eGRC platform harvests asset and vulnerability data directly from Retina CS to provide a snapshot view of Threat Management health based on any data Retina collects for vulnerabilities regardless of server, desktop, infrastructure, cloud or even mobile device. The managed data feed can be setup to import data at almost any periodic frequency and will continually update Archer with the latest Threat Management data based on findings contained within Retina CS regardless of scan job. In addition, this data is completely exposed down to the most granular level to see how assets and vulnerabilities fair against current process and policies.

The data collected can drive any of the pre-defined reports within Archer and provide the scan result status organizations need to manage vulnerabilities as a part of their governance, risk, and compliance. The screen shot below illustrates a standard report within Archer that plots assets by severity and total vulnerabilities.

If you would like to see more of this exciting new integration, please visit us next week at the Archer GRC Summit in Chicago. We would like to show you the flexibility and power of an enterprise vulnerability management solution tied directly to your enterprise GRC solution. And, just like being the first with Threat Analyzers, we are proud to share with you our first integration as a new company.

For more information on how to connect Retina CS and RSA Archer eGRC, please contact us today.

Tags:
, , , , , ,

Additional articles

How To Implement The Australian Signals Directorate’s Top 4 Strategies

Posted October 20, 2014    Morey Haber

The Australian Signals Directorate (ASD), also known as the Defence Signals Directorate, has developed a list of strategies to mitigate targeted cyber intrusions. The recommended strategies were developed through ASD’s extensive experience in operational cyber security, including responding to serious security intrusions and performing vulnerability assessments and penetration testing for Australian government agencies. These recommendations…

Tags:
, , , ,
asp-mvc

Exploiting MS14-059 because sometimes XSS is fun, sometimes…

Posted October 17, 2014    BeyondTrust Research Team

This October, Microsoft has provided a security update for System.Web.Mvc.dll which addresses a ‘Security Feature Bypass’. The vulnerability itself is in ASP.NET MVC technology and given its wide adoption we thought we would take a closer look. Referring to the bulletin we can glean a few useful pieces of information: “A cross-site scripting (XSS) vulnerability exists…

Tags:
4bestpracticesaudits-blog

Four Best Practices for Passing Privileged Account Audits

Posted October 16, 2014    Chris Burd

Like most IT organizations, your team may periodically face the “dreaded” task of being audited. Your process for delegating privileged access to desktops, servers, and infrastructure devices is a massive target for the auditor’s microscope. An audit’s findings can have significant implications on technology and business strategy, so it’s critical to make sure you’re prepared…

Tags:
, , , ,