This document discusses vulnerability management and introduces TrustedAgent as a comprehensive enterprise platform. It notes that managing vulnerabilities across thousands of devices and applications strains IT resources. TrustedAgent aims to integrate, standardize, and automate existing governance, risk, and compliance processes to improve security posture and meet various compliance requirements more efficiently. Key components include asset, risk, and compliance management along with continuous monitoring. It is demonstrated through importing scan results, prioritizing findings, and generating reports.
2. With thousands of
hardware, O/S and
applications across your
network, are you really
managing your
vulnerabilities?
Internet
With thousands of
hardware, O/S and
applications across your
network, are you really
managing your
vulnerabilities?
3. Managing vulnerabilities
is straining your IT
resources leaving little
progress on improving and
sustaining security
posture?
Managing vulnerabilities
is straining your IT
resources leaving little
progress on improving and
sustaining security
posture?
4. Reporting is time-
consuming,
inefficient, and error-
prone. Lack of
visibility into the
organization security
posture.
Reporting is time-
consuming,
inefficient, and error-
prone. Lack of
visibility into the
organization security
posture.
5. One data breach can
result in financial
penalties, lose brand
recognition, reduce
productivity, face
legal liabilities, or
undergo greater
scrutiny from
regulators.
One data breach can
result in financial
penalties, lose brand
recognition, reduce
productivity, face
legal liabilities, or
undergo greater
scrutiny from
regulators.
6. Introducing TrustedAgent
• Comprehensive, enterprise platform that integrates, standardizes, and
automates existing IT GRC processes.
• Enable organizations to meet the challenging, complex, and ever-
changing requirements of PCI, SOX, HIPAA, NERC, GLBA, FISMA, and
many others.
• Improve existing business processes and best practices using
frameworks such as ISO 27001/27002 and COBIT, to achieve cost
reduction, eliminate waste and gain operational efficiencies.
7. TrustedAgent Benefits
• Provide an enterprise solution that integrates,
standardizes, and enhances the management of security
risks, privacy, and regulatory compliance across the
enterprise.
• Reduce time and costs associated with risk management
activities through collaboration, dashboard analytics, and
automated reporting and document generation.
• Provide a standard of care to minimize security risks, legal
liabilities, and penalties, and to facilitate communications with
shareholders, customers, regulators, and insurers.
• Continuously monitor and assess critical business assets
and functions to gain visibility into and improve their
security and compliance posture
10. Vulnerability Management and CDM
Risk Analysts
- Confirm
effectiveness of
remediation
Risk Analysts, CISO,
Security Managers
Regulators,
Senior Management,
Insurers
Users
TrustedAgent syncs
vulnerabilities into
new, existing and
repeated vulnerabilities
Risk Analysts
- Review results via
online view of findings
Risk Analysts
- Prioritize findings to address
- Fix findings
Users
11. Benefits of Vulnerability Management
using TrustedAgent
• Get visibility to all assets and the relationships of the
assets to the organization’s business processes, regulations,
or standards through a centrally-managed asset repository.
• Track identified vulnerabilities against impacted assets.
Automatically reconcile new vulnerabilities from existing
and repeat vulnerabilities.
• Prioritize and plan remediation through data-driven
risk-based decision.
• Proactively maintain and ensure completeness of
regulatory compliance by supporting ongoing or
continuous monitoring of the assets for vulnerabilities.
12. Supported Scanning Tools
Support integration with
the following vulnerability
assessment and asset
discovery tools.
Trademarks and copyrights are properties of their respective owners.
NMAP
* *
*
**
* Indicate s direct integration is supported. Otherwise integration
is supported through XML data import.
15. Using TrustedAgent for Vulnerability Management
Step 1. Manage Assessment
Entities for Systems, Sites,
Programs, Vendors, Audits, and
Processes
16. Using TrustedAgent for Vulnerability Management
Step 3. Manage
Entity Assets
Step 2. Import
Assets From Excel,
XML Scan Results,
or Nmap Discovery
Nmap
17. Using TrustedAgent for Vulnerability Management
Step 4. Setup Scan
Configurations
Step 5. Initiate
Vulnerability
Assessments
18. Using TrustedAgent for Vulnerability Management
Step 6. Access Scan
Summaries
Step 7. View Scan
Reports Online
20. Using TrustedAgent for Vulnerability Management
Step 9.
Accept
Findings to
Create
Corrective
Action Plans
Step 10. Link
Findings to Existing
Corrective Actions.
Reject Findings as
False Positive.
21. Using TrustedAgent for Vulnerability Management
Step 11. Generate
Dashboard Reports
Step 12. Generate
Enterprise Risk
Reports
22. Contact Information, Q&A, and Next Steps
Trusted Integration, Inc.
525 Wythe Street
Alexandria, VA 22314
703-299-9171 Main
703-299-9172 Fax
www.trustedintegration.com