Call: +44 (0) 7885 483825

IT System Vulnerability

Our managed vulnerability services are able to:

  • Scan 100% of the infrastructure – scan physical and virtual networks, databases, operating systems and web applications to ensure that the organization knows about all vulnerabilities and mis-configurations
  • Accurately understand the risk exposure – with continuous discovery of physical and virtual assets along with integrated information onmalware and exploit exposure, provide accurate insight into where the organizations most significant risks exist.
  • Prioritize vulnerabilities quickly and accurately – scans can uncover thousands of vulnerabilities, and effectively prioritize remediation.
  • Verify that vulnerabilities have been remediated – with integrated data, thereby reducing duplicate efforts and hence offering a more effective risk reduction.
  • Produce a detailed risk reporting across all physical and virtual assets, and a remediation plan.

Options for managed vulnerability deployment

Networking devices and operating systems (the backbone of the IT infrastructure) are common targets for attackers looking for mis-configurations and vulnerabilities as entry points into an organization.  It is necessary to identify vulnerabilities and mis-configurations quickly and effectively across all attack vectors in the network. By validating their susceptibility to known exploits, malware kits and other contextual factors to calculate a risk score, organizations can develop appropriate remediation plans that are both cost effective and efficient in securing their IT infrastructure.

The proposed solution has the broadest deployment flexibility of any solution in the industry providing organizations with complete flexibility of options including software, appliance, virtual machine, laptop, managed service and private cloud deployments.

In all options, the proposed solution allows for centralized management of scan data through the web-based Security Console, while allowing organizations to deploy stand alone scan engines throughout distributed environments. Remote scanning engines can be placed strategically throughout the environment to scan assets locally and have scan data sent back to the central console for easy asset management and reporting. The console allows organizations to define and manage assets, configure scans, store scan data, and generate reports. The scanning engine performs scanning, threat detection, and vulnerability identification. The database is stored in the console and the console manages all communication and updating from the Scan Engine. The distributed scan engine architecture and scan engine pooling enable organizations to create pools of scan engines to perform scanning. As customer demands grow, additional scan engines can be added to the pool to increase performance without additional maintenance, and maximize efficiency.