1
2
Presentation outline
» IT pain points
» The product
» How does GFI LanGuard® work?
» Top features
» What’s new in GFI LanGuard 2012?
» Product benefits
» Testimonials
» Kudos
» Conclusion
3
IT PAIN POINTS
4
IT pain points (1/2)
“Users with the average software portfolio installed on their PCs will need to
master around 14 different update mechanisms from individual vendors to
update their programs and keep their IT systems protected against
vulnerabilities”
– Secunia Yearly Report 2010
Some vulnerabilities remain un-patched for as long as two years
– SANS, 2009
5
IT pain points (2/2)
» Failure to keep machines patched can lead to security breaches
and downtime
» Without an automated patching mechanism in place, manual patching is
very time-consuming
» All computers on the network need to be patched, both Windows® and
Mac® OS X®
» Failure to comply with compliance regulations (such as PCI DSS, HIPAA,
SOX, etc.) can result in hefty fines
6
THE PRODUCT
7
GFI LanGuard
GFI LanGuard is a network security scanner and patch management
solution that acts as a virtual security consultant to provide a
comprehensive network security overview with minimal
administrative effort
» A complete network vulnerability management solution in one
convenient integrated package which offers
□
□
□
□
□
Patch management
Vulnerability scanning
Network and software auditing
Assets tracking
Risk management and compliance
» Over 50,000 vulnerability assessments are made with each scan to
detect, assess and rectify security vulnerabilities on your network
8
How does GFI LanGuard work?
Takes only few
minutes to be
up and
running
Deploy agents
Agent-less or
agent-based
Find vulnerabilities,
missing patches,
open ports, services,
hardware and
software, etc.
Scan
(agent-less)
Install
Deploy missing updates,
uninstall applications,
deploy custom scripts,
open remote desktop
connections, etc.
Vulnerabilities and patches
definitions are continuously
updated from GFI servers to
report and remediate latest
threats
Powerful
interactive
dashboard
Vulnerability
level assigned to
each computer
Reports, results
Analyze filtering, network
changes history
Check external
references
Remediate
9
Top features – Patch management
» Fix vulnerabilities before they are exploited by malicious software
or people
» On demand or automated detection, download and deployment of missing
security patches
□ Microsoft and Mac OS X operating systems
□ Microsoft applications
□ Other third party applications (including Adobe®,
□
Mozilla®, Apple®, Google™, Oracle®, etc.)
Both security and non-security patches
» Rollback patches
» Network-wide deployment of custom software and scripts
10
Top features – Patch management
11
Top features – Vulnerability assessment
» Software vulnerabilities are the main gates for malware and hackers to
enter your network
» Vulnerability scanning engine offers the capability to perform multi-
platform scans (Windows, Mac OS®, Linux™) across all environments
including virtual machines
» Easily create custom vulnerability checks through simple wizard-assisted
set-up screens
» State-of-the-art vulnerability check databases based on OVAL and
SANS Top 20, providing over 50,000 vulnerability assessments when your
network is scanned
» Easily configure scans for open ports, unused local users and groups,
blacklisted applications, dangerous USB devices, printers, routers,
switches and more
12
Top features – Vulnerability assessment
13
Top features – Network and software audit
» Provides you with all the information you need to know about your
network such as:
Virtual machines
Hardware and software installed
Services
CPU information
Manufacturer and serial no.
Auditing policies
Operating system
HDD space
Users/Groups
Wireless devices
Network adaptors
Shares
» TCP and UDP port scanning
» Automatically remove unauthorized applications
» Check status of over 2,500 security applications (antivirus, antispyware,
firewalls, disk encryption, data loss prevention, etc.)
» History of security sensitive changes on your network (e.g., a new
application is installed, a service is started/stopped, etc.)
14
Top features – Network and software audit
15
Top features – Asset inventory
» Unmanaged/forgotten machines are a security risk
» Find the devices you were not aware of:
□
□
□
□
Servers and workstations
Virtual machines
IP-based devices such as routers, printers, switches, etc.
Smartphones and tablets such as iPhone®, iPad® and Android™ phones
16
Top features – Risk analysis and compliance
» Get assistance on what to fix first:
□ Security issues are rated by their severity level
□ Each computer has assigned a vulnerability level
» Powerful interactive dashboard with security sensors that are triggered
when problems are found
» Full text search support
» Executive, technical and statistical reports
» Dedicated reports for popular compliance standards
□
□
□
□
□
PCI-DSS
HIPAA
SOX
GLB/GLBA
PSN CoCo
17
Top features – Risk analysis and compliance
18
What’s new in GFI LanGuard 2012 and 2012 SR1?
» Relay agents – great for multi-site and large networks
» Microsoft non-security patches now included
» Mac OS X patching – OS and included applications
» Vulnerability checking for network devices such as printers, routers
and switches
» Compliance standard specific reports for HIPAA, SOX, GLB/GLBA, PSN
CoCo in addition to PCI-DSS
» Identification of smartphones and tablets
» Windows 8 and Windows Server 2012 support
19
Product benefits (1/2)
Security
» Complete overview of network security status: Vulnerability
assessment, patch management, network and software audit
» Remediation of security issues
» Reduce the risks of data theft and data loss
Productivity
» Less downtime: The company can concentrate on the core business
» Manual vulnerability and patch management is slow and error-prone
» Reduce the number of hours network and system administrators need
to spend on vulnerability and patch management
20
Product benefits (2/2)
Compliance
» Prove your network is secure when reporting to superiors or when
compliance must be achieved
» Reduce the risks of legal penalties
21
TESTIMONIALS
22
Product testimonials
“I use GFI LanGuard on over 1,000 servers… GFI LanGuard is the best tool
that I have ever laid my hands upon! I will continue to recommend the product
to our new customers, I have no doubt they will purchase it!”
– Joel di Prima, Windows Security Officer, Hewlett Packard, Belgium
“GFI LanGuard, in my opinion as an IT Manager, is awesome! It has cut my
hot fix deployment time to almost nothing. It also helps me troubleshoot any
issues that I may have with my client machines.”
– Jason Rivera, IT Manager, US Poultry and Egg Association, USA
Click here for more testimonials!
23
Product kudos
» Thousands of customers worldwide use GFI LanGuard
» Validated for the HP Converged Infrastructure
» Numerous product awards, a few listed below:
24
GFI product complements
» Best incorporated with:
□ GFI EventsManager®
for network-wide event log management
□ GFI Network Server Monitor®
which automatically sends alerts and corrects network and server issues
□ GFI EndPointSecurity™
for network-wide control of portable storage media and consumer electronic
devices such as MP3 players, USB sticks and more
25
Conclusion
» Your own virtual security consultant
» Comprises:
□ patch management
□ vulnerability assessment
□ network auditing
» Delivers benefits of:
□ comprehensive network security
□ increased productivity
□ assistance with proving compliance
» Excellent pricing
26
Corporate overview
» Offices located around the globe: USA (North Carolina, California and
Florida), UK (London and Dundee), Australia, Austria, Romania,
and Malta
» Hundreds of thousands of installations worldwide
» Trusted by thousands of companies around the world
» GFI® products are sold by a global network of thousands of partners
All product and company names herein may be trademarks of their respective owners.
27
More info and downloads
» Click here to learn more about the product
» Check out our competitive pricing
» Download your FREE trial of GFI LanGuard
» Email: sales@gfi.com
» Visit: www.gfi.com/languard