Add to collection(s) Add to saved
  1. No category
Uploaded by Boice Lu

BigFix Insights & BigFix Insights for Vulnerability Remediation-MBT

advertisement 
Keeping ALL Endpoints
Continuously Patched and
Compliant
Copyright
©
2019
Limited || Limited
www.hcltechsw.com
Copyright
© 2020
HCLHCL
Technologies
Limited
www.hcltechsw.com
Copyright
©Technologies
2019 HCL Technologies
| www.hcltech.com
BigFix
Insights
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Insights
Quickly visualize risk while easily finding the endpoint issues that matter most
• A new analytic tools for deeper insight into risk and
operational efficiency
• Powerful Data Repository to ingest data from all BigFix
data sources
• Integrates data from leading vulnerability and incident
response solutions worldwide
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Sample BigFix Insights Report: Patch Rhythm
Business value
•
Top down visuals that allow you to assess at-a-glance
how well you are protecting the business
Patch Rhythm addressing 4 key areas
•
•
•
•
Patch Exposure with timeline
Patch Exposure by Severity/Age
Exposures by Category
Exposures by Vendor
Rich visualizations and easy filtering
•
•
•
High level and insightful data summaries, grouped by
different criteria
Quick drill-down to specific areas with filtering directly
on the criteria
Concise view of your exposure to vulnerabilities as a
multiple of endpoints and applicable patches
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Sample BigFix Insights Report: Device Inventory
Business value
•
Provide a view of all devices so that you can prioritize
migrations from soon to be out of support operating
systems.
Reports addressing 4 key areas
•
•
•
•
Device Overview
Last Report Time by Device Type
Groups Overview
OS by Version
Rich visualizations and easy filtering
•
•
•
Device types by server vs workstation, hardware vs
cloud/virtual, mobile vs stationary
Drill down to level of detail desired/required
Understand where your investment is regarding OS
vendors
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Sample BigFix Insights Report: OS Migration
Business value
•
Provide a clear view of OS migration
efforts
Reports addressing 3 key areas
•
•
•
OS Migrations
Groups Overview
OS Overview
Rich visualizations and easy
filtering
•
Clear understanding of the volume
of effort to date and effort needed
to complete migration
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Sample BigFix Insights Report: Deployment Progress
Business value
•
Provide a measure of
success for patch or
software upgrade efforts
with an enterprise view for
executives
Addresses 4 key areas
•
•
•
•
Successful Deployment
Over Time
Success Rate
By Group
Application Type
Rich visualizations and
easy filtering
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Insights for
Vulnerability
Remediation
Copyright ©
2019 HCL©Technologies
Limited | Limited
www.hcltechsw.com
Copyright
2019 HCL Technologies
| www.hcltech.com
9
The Vulnerability Remediation Gap
is a Universal Challenge
1/3 Nearly one- 10% Only 10
third of all detected
Vulnerabilities
remain open after a
year,
¼
percent of
organizations
addressed all open
vulnerabilities within
a year of discovery 1
50% Only half of 60% As many as
security leaders are
confident in their
ability to ensure that
business critical
vulnerabilities are
remediated quickly 2
are never
60% of organizations
said that at least on
recent data breach
occurred because a
patch was available
for a vulnerability
but was not applied 3
remediated 1
1 “Persistent Vulnerabilities, Their Causes and the Path Forward,” Tenable Research, June 2020
2 The Rise of the Business-Aligned Security Executive, a commissioned study conducted by Forrester Consulting on behalf of Tenable, August 2020
3 Costs and Consequences of Gaps in Vulnerability Response, an independent survey conducted by Ponemon Institute LLC on behalf of ServiceNow, October 2019
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
WHY is this happening?
“..Due to the sheer
vulnerabilities
volume of reported
…and the use of ineffective
schemes,
prioritization
…Patching can break and disrupt
systems
….IT operations (patching) is usually a different
team
…as well as resource
constraints
organizations continue to be challenged to remediate
vulnerabilities in appropriate time frames.
How Security and Risk Management Leaders Can Establish Practical Time Frames for Vulnerability Remediation
Published: 30 January 2020 ID: G00432871
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
What can Go Wrong?
A top 10 US
Financial
Institution
•
Security scans are 15 days old before
the get to the IT team
•
5000 apps, 6M "running"
vulnerabilities at any time
45 days to resolve discrepancy and ID
the right patches
•
•
•
Then use Qualys to scan again
THEY ARE NEVER IN SYNCH!
•
Looking for elusive
"Green light/Green Light" state
A Top 3
Credit Rating
Institution
•
Unpatched and misconfigured servers
were discovered by Security and
Mandiant (Apache struts)
•
•
An exploit existed in the wild
A two month gap in patching,
resulting in the exposure of 143M
records (40% of all US citizens)
•
•
Entire C-Suite was fired
$1.4B in cleanup cost
•
$1.3B to resolve consumer claims
https://www.csoonline.com/article/3444488/equifax-data-breach-faq-what-happened-who-was-affected-what-was-the-impact.html
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Introducing BigFix Insights for
Vulnerability Remediation
Unify Security
and Operations
Compress the time
from vulnerability
assessment to
remediation
Copyright © 2019 HCL Technologies Limited | www.hcltechsw.com
Lower Risk
Reduce the attack
surface by eliminating
more vulnerabilities
faster
12
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Remediating with Current Tools
IT Operations
IT Operations IT Operations
Sec Analyst
Scans
Network
Deploy & Remediate
Update​
spreadsheets
Update​ spreadsheets
spreadsheets
Update​
Researches
each
vulnerability​
Researches each
each vulnerability​
vulnerability​
Researches
10K-1M+ vulnerabilities = 20-100 hours/month​
Minutes
Hours - Days
Manually packages
packages fixes
fixes
Manually
Hours/Days
Hours/Days
Weeks -Months
Weeks - Months
Remediating with BigFix
Sec Analyst
IT Operations
IT Operations
• Unify Security and IT Operations
- Compress time to remediate
Scans
Network
Intelligent
Review and Patch Correlation
& Automated
Prioritize
Remediation
Patch Actions
Fixlet Creation
Minutes
Deploy and
Remediate
• Lower Risk
- Reduce the attack surface
Minutes/Hours
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Insights for Vulnerability Management for Tenable.sc
Integrates with Tenable.sc and uses advanced
correlation algorithms to apply the best patch for
thousands of vulnerabilities at one time.
Why?
A typical enterprise has thousands of active
vulnerabilities. If it currently takes a few minutes
per vulnerability, BigFix will reduce that to a
fraction of the time.
Remediating with Current tools
At least 2 minutes manual work per vulnerability
Processing 1000 Vulnerabilities = 33 hours
Automated Remediation with BigFix
Processing 1000 distinct Vulnerabilities = minutes
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Insights for Vulnerability Remediation: Qualys
Integrates with Qualys vulnerability scans and
uses advanced correlation algorithms to apply
the best patch for thousands of vulnerabilities at
one time.
Why?
A typical enterprise has thousands of active
vulnerabilities. If it currently takes a few minutes
per vulnerability, BigFix will reduce that to a
fraction of the time.
Remediating with Current tools
At least 2 minutes manual work per vulnerability
Processing 1000 Vulnerabilities = 33 hours
Automated Remediation with BigFix
Processing 1000 distinct Vulnerabilities = minutes
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
.
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
.
Only BigFix Offers:
4 Intelligent Automation Engines
1. Correlate endpoint ID with
Qualys/Tenable
2. Correlate vulnerability to a
Fixlet
3. Identify the superseded
(latest) remediation
4. Correlate the BigFix endpoint
to the latest Fixlet
No additional
agent
Uses the existing
agent
Covers all of
your OS’s
Over 12 operating
systems with nearly
90 varations.
No performance
impact
User experience is
not impacted
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Insights
& BigFix Insights for Vulnerability
Remediation
Installation & Configuration
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Insights
& BigFix Insights for Vulnerability
Remediation
Demonstration
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
BigFix Resources & Contacts
www.BigFix.com
offerings | features | resources | schedule
demo
support.BigFix.com
support | events | publications
get software | engage | learning |
BigFix.me
forum.BigFix.com
wiki | docs | blog | support
Products |
github.com/bigfix | developer
Copyright © 2020 HCL Technologies Limited | www.hcltech.com
Michael Thompson
BigFix Technical Adviser
20
Copyright © 2019 HCL Technologies Limited | www.hcltech.com
Related documents
planning a fair test
planning a fair test
Countries-and-Nationalities-Worksheet-Q-and-A
Countries-and-Nationalities-Worksheet-Q-and-A
Ann Taylor - Casestudy copy
Ann Taylor - Casestudy copy
WarmUp 10 22 19
WarmUp 10 22 19
changing states of water
changing states of water
aleisa letter
aleisa letter
Application to rejoin
Application to rejoin
2019-11 Asgmt 3
2019-11 Asgmt 3
This worksheet
This worksheet
Mission 2019: Global Food Security in the 21 century st
Mission 2019: Global Food Security in the 21 century st
Download
advertisement