Patch and Remediation

 

 

"Over 90% of cyber attacks exploit known security flaws for which a remediation is available." - Gartner Research

 

 

 

Norman Patch and Remediation provides rapid, accurate and secure patch management for applications and operating systems, allowing you to proactively manage threats and IT risk even in the most complex of IT environments.

A universal law enforcement axiom states that criminals prefer to trespass through vulnerable open or unlocked doors or windows. In the IT and software industries, the same rule prevails. Approximately nine in 10 cyber attacks exploit known computer security flaws.

Criminals using malicious software prefer the easy path: attacking client-side software that is vulnerable because software patch management is out of date, often by months and even years, leaving computers wide open. For example, for months the Conficker worm continued to spread to millions of computers worldwide through a security hole in Windows Server Service -- despite Microsoft publishing a patch for this vulnerability.

How Norman Patch and Remediation Works: Discover - Discover all network assets with integrated network and agent-based Endpoint and Asset Discovery Assess - Assess Security Risk – view vulnerabilities and security configurations on all managed assets Prioritize - Prioritize threats and mitigation actions to increase the organization’s security posture Remediate - Remediate vulnerabilities for any application and OS; Mitigate risk with custom remediations Report - Comprehensive Reporting across entire enterprise network from a single console

As IT environments have become increasingly complex, supporting virtual, distributed, and disparate platforms, companies must ensure that they maintain control of their endpoints. Ensuring secure and standard endpoint configurations and patch management for third party applications and operating systems is paramount to reducing IT risk and improving endpoint operations.

With an average of more than 15 new vulnerabilities reported daily¹, staying on top of vulnerability management should be on top of the IT departments work list.

¹ Average of reported vulnerabilities, 2006 through 2010. Source: National Vulnerability Database (http://nvd.nist.gov)

Key Benefits

Single Solution for Heterogeneous Environments

Vulnerability audits and remediation with wide support across major OS platforms (Microsoft Windows, Linux, MacOS, Sun Solaris, HP, etc.) – all from a single console.

Provides a Consolidated, Single Tool To Meet All Your Patching Needs

Enforces corporate patch policies regardless of the endpoint platform or applications. Optimizes IT operations and provides an improved security posture and reduced TCO via a broad vulnerability assessment and remediation database.

Automated Discovery and Assessment of IT Assets

Provides inventory and management of both physical and virtual environments via in-depth assessment of vulnerabilities, patch status, security configurations, installed software and managed and unmanaged hardware inventory.

Continuous Policy Enforcement

Automatically enforces patches, configurations, remediations and other custom and repetitive tasks.

Diverse, Flexible Reporting

Provides detailed information across the patch and remediation management process, including agent policy status, vulnerability deployments, asset inventory and more.

Virtual Environment Support

Ensures visibility and control of both physical and virtual environments with effective management.

Features

• Improved Management Console - Features web-, role- and workflow based navigation to simplify and optimize endpoint operations.
• Automated Discovery and Assessment of IT Assets - Full visibility into both physical and virtual environments via schedulable discovery, in-depth vulnerability assessment, patch status, security configurations, installed software and managed and unmanaged hardware inventory.
• Actionable Reporting - Provides detailed information across the patch and remediation management process, including agent policy status, vulnerability deployments, asset inventory, and supports many compliance reporting requirements.
• Single Solution for Diverse Environments - Broad support across major OS platforms and third party applications all from one console (Windows, Linux, MacOS, Sun Solaris, HP, POSIX and infrastructure devices, Adobe® and QuickTime®, etc.)
• Comprehensive Patch, Remediation, and Configuration Capabilities - Assessments include security configurations, OS, application and patch-level related vulnerabilities, null passwords, known hacking tools, malware, common worms, and P2P software check.
• Continuous Monitoring and Enforcement - Automatically enforces patches, configurations, remediations and other custom and repetitive tasks. Baseline policies can be easily exported and applied across multiple groups and servers for consistency.

Advanced Features with Content Wizard

Extend the power of Norman Patch and Remediation by adding Norman Content Wizard to centralize, automate and streamline desktop, system and power management.

» Read More