VAM serves as your vulnerability command and control center, delivering:

• Systematic vulnerability scanning: fast, accurate, comprehensive, with minimal network impact
• Automated, scheduled device discovery and network mapping; fully configurable, tunable
• Extensible Vulnerability Repair Workflow™: automatic assignment of repairs and scheduling, lifecycle tracking, automated repair verification, detailed device histories
• Technical and management reporting
• Trending and workflow analysis
• Multi-user, role-based permissions/access
• Distributed architecture for large organizations; centralized data warehousing
• Full integration with existing IT systems through Enterprise Integration Framework™ suite of open APIs

As an integrated vulnerability management platform, VAM goes well beyond the routine scanning and reporting offered by simple vulnerability scanners. Effective vulnerability management must take into account regulatory/compliance requirements, the diminishing time between the identification of a vulnerability and its exploitation, and the need to maximize the efficiency of finite IT resources. VAM meets the challenges of today’s demanding security environment, offering:

• Regulatory compliance: VAM ensures and demonstrates the integrity of systems housing sensitive information through comprehensive reporting and device histories
• Integration with existing critical IT systems and processes, such as trouble-ticketing, patch management, network management, and other security-related systems
• Extensibility to accommodate organization-specific requirements and business flows
• An open, distributed architecture that scales seamlessly to global, enterprise-wide deployments, yet offers centralized Web-based management.

Reporting and compliance with Security POV™

Security POV consolidates all vulnerability data points from across the enterprise and provides a single view of an organization’s risk. Available as an optional security management analysis module, Security POV analyzes the vulnerability lifecycle, repair management, and risk management posture. It generates both high-level and in-depth, granular reports tailored to auditors, managers, security staff, and system administrators. Security POV ships with 60 pre-defined reports. A few examples are shows in the tour below.

Launch tour »

Security POV analyzes all affected elements, correlates vulnerability risks from multiple sources, assesses the organization’s effectiveness at eliminating and reducing security risks, and identifies positive and negative trends in the vulnerability management process.

Security POV’s enterprise-class reporting capabilities include complete customization (including look and feel), scheduled and emailed reports, public and private reports, and five output formats including HTML, PDF, and XML.

Learn more about Security POV with our white paper: Passing an information security audit: Targeted reporting for network vulnerability management »

Zero-day protection with automated rule updates

VAM scan rules are created, tested, and released by the StillSecure Security Alert Team (SAT), which operates on a 24x7 basis to monitor and respond to network threats. In addition to writing and releasing GPL rules in-house, SAT compiles rules from multiple sources including the Open Security Scanner Association (OS2A) and other organizations operating under the GPL.

VAM rules conform to the open-source .nasl format. VAM can be configured to check for updated SAT rules as frequently as every hour, or users can download rule updates on demand, ensuring up-to-the-minute protection against newly released threats. Custom rules can be easily created to address organization-specific threats and policy compliance.

Support for DoD IAVA identification

VAM rules support Information Assurance Vulnerability Alert (IAVA) identification. This allows authorized government users and government contractors to view and manage rules and vulnerabilities based on IAVA IDs.

Enterprise scalability and management

VAM scales seamlessly, from simple LAN deployments to enterprise-level networks. Managed from a single Central Server, multiple Distributed Scanners (DSs) can be deployed to provide the coverage required (shown in graphic at top of page). DSs enable VAM to scan through or behind firewalls (and other access control measures) and across geographically dispersed networks.

Additionally, VAM's Groups, Collections, and role-based permissions features provide enterprise-level management of devices, user access, and reporting. Using Groups and Collections, you can create a hierarchical structure tailored to your organization and assign role-based, need-to-know access to VAM. Enterprise features include:

• Centralized, in-house, secure management of all vulnerability data
• Centralized configuration and control of Distributed Scanners
• Optimized interface for high-volume, complex enterprise environments.

Integration within the enterprise IT environment

The optional Enterprise Integration Framework™ (EIF) module facilitates the complete integration of the vulnerability management process within the IT environment (shown at left). The EIF is a set of open APIs (available both in Java and XML) that allows external systems to execute commands, import data to, export data from, and act on vulnerability data within VAM's core vulnerability management process.

Through this open architecture, VAM serves as a network vulnerability command center, providing a common view of all vulnerability data, and consolidating data and processes from other vulnerability-related systems, such as third-party scanning tools and patch managers. For example, VAM can create, update, or close out a trouble-ticket in a third-party system such as Remedy or Peregrine (shown at left).

Likewise, VAM can import data from other vulnerability scanners, such as Nessus, ISS Internet Scanner, Harris STAT® and others. The VAM Enterprise Integration Framework provides:

• Centralized management of all vulnerability data – A single, integrated, end-to-end repository where all vulnerability information, activities, and data are managed.
• Vulnerability management across disparate systems – Integrates with third-party and internal systems to provide an auditable workflow.
• Leveraging of IT investments – Increases the value of existing IT systems and processes, streamlines security administration, and reduces training and management costs.
• Proactive risk mitigation – Requires less overhead and provides a repeatable means to continually mitigate the risk of an attack on the network.

Extensible workflow

The EIF also includes the Extensible Security Plug-In Architecture^TM (ESPA), an open architecture that enables users to extend VAM’s functionality by fine-tuning the workflow to meet specific organizational requirements. Executed directly from the VAM interface, plug-ins perform business operations unique to the enterprise’s needs, such as sending data to business-critical systems or home-grown IT systems. Users can also build plug-ins to modify VAM; for example, customizing workflow prioritization or changing device profile information. Highly flexible, plug-ins can be developed using any programming or scripting language that can parse XML.

Availability

VAM is available as software or as preconfigured hardware appliance. VAM can be deployed as a turnkey vulnerability management system or as a management platform integrated with existing IT systems.

For more information, contact StillSecure.

View End-User License Agreement.

* Nessus is a trademark of Tenable Network Security, Inc. Latis Networks, Inc. is not affiliated with, connected to, or sponsored by Tenable Network Security, Inc.