GFI LanGuard - GFI Software

advertisement
1
2
Presentation outline
» IT pain points
» The product
» How does GFI LanGuard™ work?
» Top features
» What’s new in GFI LanGuard 2011?
» Product benefits
» Testimonials
» Kudos
» Conclusion
3
IT PAIN POINTS
4
IT pain points (1/2)
“Users with the average software portfolio installed on their PCs will need to
master around 14 different update mechanisms from individual vendors to
update their programs and keep their IT systems protected against
vulnerabilities”
– Secunia Yearly Report 2010
Some vulnerabilities remain un-patched for as long as two years
– SANS, 2009
5
IT pain points (2/2)
» Failure to keep machines patched can lead to security breaches and
downtime
» Without an automated patching mechanism in place, manual patching is
very time-consuming
» Failure to comply with compliance regulations such as PCI DSS
can result in hefty fines
6
THE PRODUCT
7
GFI LanGuard
GFI LanGuard is a network security scanner and patch management
solution that acts as a virtual security consultant to provide a
comprehensive network security overview with minimal
administrative effort!
» A complete network vulnerability management solution in one
convenient integrated package which offers
□
□
□
□
□
Patch management
Vulnerability scanning
Network and software auditing
Assets tracking
Risk management and compliance
» Over 45,000 vulnerability assessments are made with each scan to
detect, assess and rectify security vulnerabilities on your network
8
How does GFI LanGuard work?
Takes only few
minutes to be
up and
running
Deploy Agents
Agent-less or
agent-based
Find vulnerabilities,
missing patches,
open ports, services,
hardware and
software, etc.
Scan
(agent-less)
Install
Deploy missing updates,
uninstall applications,
deploy custom scripts,
open remote desktop
connections, etc.
Vulnerabilities and patches
definitions are continuously
updated from GFI servers to
report and remediate latest
threats
Powerful
interactive
dashboard
Vulnerability
level assigned to
each computer
Reports, results
Analyze filtering, network
changes history
Check external
references
Remediate
9
TOP FEATURES
10
Patch management (1/2)
» Fix vulnerabilities before they are exploited by malicious software or
people
» On demand or automated detection, download and deployment of missing
security patches
□ Microsoft operating systems
□ Microsoft applications
□ Other third party applications (including Adobe,
Mozilla, Apple, Google, Oracle, etc.)
» Rollback patches
» Network-wide deployment of custom software and scripts
11
Patch management (2/2)
12
Vulnerability assessment (1/2)
» Software vulnerabilities are the main gates for malware and hackers to
enter your network
» Vulnerability scanning engine offers the capability to perform multiplatform scans (Windows, Mac OS, Linux) across all environments
including virtual machines
» Easily create custom vulnerability checks through simple wizard-assisted
set-up screens
» State-of-the-art vulnerability check databases based on OVAL and
SANS Top 20, providing over 45,000 vulnerability assessments when your
network is scanned
» Easily configure scans for open ports, unused local users and groups,
blacklisted applications, dangerous USB devices and more
13
Vulnerability assessment (2/2)
14
Network and software audit (1/2)
» Provides you with all the information you need to know about your
network such as:
Virtual machines
Hardware and software installed
Services
CPU information
Manufacturer and serial no.
Auditing policies
Operating system
HDD space
Users/Groups
Wireless devices
Network adaptors
Shares
» TCP and UDP port scanning
» Automatically remove unauthorized applications
» Check status of over 1,500 security applications (antivirus, antispyware,
firewalls, disk encryption, data loss prevention, etc.)
» History of security sensitive changes on your network (e.g., a new
application is installed, a service is started/stopped, etc.)
15
Network and software audit (2/2)
16
Assets inventory
» Unmanaged/forgotten machines are a security risk
» Find the devices you were not aware of:
□ Servers and workstations
□ Virtual machines
□ IP-based devices such as routers, printers, switches, etc.
17
Risk analysis and compliance (1/2)
» Get assistance on what to fix first:
□ Security issues are rated by their severity level
□ Each computer has assigned a vulnerability level
» Powerful interactive dashboard with security sensors that are triggered
when problems are found
» Full text search support
» Executive, technical and statistical reports
» PCI DSS dedicated reports
18
Risk analysis and compliance (2/2)
19
What’s new in GFI LanGuard 2011? (1/2)
» Integration with over 1,500 critical security applications - Providing reports
on their status and rectifying issues
» Agents technology – Can run in either agent-less or agent-based mode,
automating and distributing scanning load across client machines
» Powerful interactive dashboard - Processing security audits to provide a
summary of network security status
» Full text search support - Providing easy search of scan results
» Revamped reporting - Integrated within the main application; reports can
be exported to popular formats like PDF, HTML, XLS etc., and can be
scheduled and sent by email
» PCI DSS dedicated reports
20
What’s new in GFI LanGuard 2011? (2/2)
» Network discovery not bound by license limitations – License slots are
no longer required for all rough computers and devices in the scan
results database
» Integration with existing network infrastructure – Can now import
organizational units or entire active directory, leading to easier
computer management
» Improved support for virtual infrastructure – Enabling detection of virtual
machines hosted by the scanned computer, leading to a better view of
the virtual infrastructure
» Custom software deployment improvements – Allowing you to save
custom software deployment configuration for re-usage
» Localization into German and Italian – Available soon in early Q3!
21
Product benefits (1/2)
Security
» Complete overview of network security status: Vulnerability
assessment, patch management, network and software audit
» Remediation of security issues
» Reduce the risks of data theft and data loss
Productivity
» Less downtime: The company can concentrate on the core business
» Manual vulnerability and patch management is slow and error-prone
» Reduce the number of hours network and system administrators need
to spend on vulnerability and patch management
22
Product benefits (2/2)
Compliance
» Prove your network is secure when reporting to superiors or when
compliance must be achieved
» Reduce the risks of legal penalties
23
TESTIMONIALS
24
Product testimonials
“I use GFI LanGuard on over 1,000 servers. I do this alone for my NT team.
GFI LanGuard is the best tool that I have ever laid my hands upon!
I will continue to recommend the product to our new customers, I have no
doubt they will purchase it!”
– Joel di Prima, Windows Security Officer, Hewlett Packard, Belgium
“GFI LanGuard in my opinion as an IT Manager is awesome! It has cut my
hot fix deployment time to almost nothing. It also helps me troubleshoot any
issues that I may have with my client machines.”
– Jason Rivera, IT Manager, US Poultry and Egg Association, USA
Click here for more testimonials!
25
Product kudos
» Thousands of customers worldwide use GFI LanGuard
» Validated for the HP Converged Infrastructure
» Numerous product awards, a few listed below:
26
GFI product complements
» Best incorporated with:
□ GFI EventsManager™
for network-wide event log management
□ GFI Network Server Monitor™
which automatically sends alerts and corrects network and server issues
□ GFI EndPointSecurity™
for network-wide control of portable storage media and consumer electronic
devices such as MP3 players, USB sticks, iPods and more
27
Conclusion
» Easy to set up and use, GFI LanGuard is a network security scanner and
patch management solution that acts as your own virtual consultant and
provides a complete network security overview with minimal
administrative effort
» Excellent pricing!
28
Corporate overview
» Offices located around the globe: USA (North Carolina, California and
Florida), UK (London and Dundee), Australia, Austria, Romania,
and Malta
» Hundreds of thousands of installations worldwide
» Trusted by thousands of companies around the world
» GFI products are sold by a global network of thousands of partners
All product and company names herein may be trademarks of their respective owners.
29
More info and downloads
» Click here to learn more about the product
» Check out our competitive pricing
» Download your FREE trial of GFI LanGuard
» Email: sales@gfi.com
» Visit: www.gfi.com/lannetscan
Download