Lumension Scan

• Automated discovery of all network devices (i.e. servers, desktop computers, laptops, routers, printers, switches, wireless access points, etc.), major Operating Systems and infrastructure.

• Visibility of what’s on your network in order to make it actionable.

• Over 4000 vulnerability audits with wide support across major OS platforms (Windows, Linux, MacOS, Sun Solaris, HP, etc.), POSIX and infrastructure devices.
• Vulnerability audits include security configurations, OS and application vulnerabilities, null passwords, patch-level related vulnerabilities, known hacking tools, malware, common worms, and P2P software checks.

• Broad vulnerability assessment provides better security posture and lower TCO.

• The most accurate vulnerability assessment scan using flexible network-based scanning techniques
• Various access-levels including credentialed- and null-based
• Performs ad hoc scans that can target one or many machines, Active directory, IP ranges, OUs, specific vulnerabilities, etc.

• Run comprehensive or targeted scans independent of user availability and access levels.
• Real time and on-the-fly visibility of your environment.

• Define the scope of vulnerabilities to include in your scan
• Offers a predefined list including CVE, Bugtraq, SANS, MS Advisory, NVD.

• Customize vulnerability set in-line with corporate policy.

• Enables distributed management of scan activity by user roles.
• Delegates remediation and reporting activities to improve productivity while maintaining security.

• Customized role-based access to information, reports and activities.
• Designate individual administrators their portions of the network and have compliance managers report across the entire network.

• Effectively scan & assess even complex and geographically distributed network environments across the WAN.

• Adapt your scan administration to your organizational setup.
• Centralized management and reporting with decentralized, distributed scanning.
• Timely scan results.
• Reliable load off the network.

• Schedule and automate recurring scan tasks to run on a daily, weekly or monthly basis.

• Automation allows you to focus your resources on more critical tasks
• Continuous visibility and assessment of heterogeneous environments.

• Extensive vulnerability database with informational resources and remediation recommendations
• Provides details of identified vulnerabilities, cross-mapping identifiers, and impact to the organization, description of attack, options to fix, and additional references for further investigation.

• Actionable information to use to rapidly remediate critical vulnerabilities.
• Centralized repositories of all vulnerabilities save costs, time, and resources.

• All scanned systems are evaluated and prioritized according to asset value and vulnerability criticalities using straight-forward equations.
• All systems are listed by risk severity (High, Medium, Low, Warning and Information).

• Helps you focus and prioritize your remediation efforts on the most critical vulnerabilities.
• More efficient use of your resources.
• Lower TCO.
• Stronger security posture.
• Reduced risk exposure.

• Ability to create and export numerous high-level or detailed reports of all scan data.
• Documents changes and demonstrates progress toward audit and compliance requirements with enterprise and local reporting of asset inventory, network or agent-based scans, vulnerability remediation and much more.

• Customized documentation to meet different audience requirements for security posture.
• Be ready for comprehensive executive & management as well as technical reporting at a moment’s notice.

Lowers TCO for Demonstrating Compliance

• Maintain constant audit readiness through the automated collection and centralization of security configuration and vulnerability assessment results.
• Customize reports to fit audit requirements.

• Designed to safely scan for vulnerabilities using standard networking protocols with minimum impact to your network.
• Never employs malicious vulnerability attacks.

• Can be used to scan production and tactical networks without causing disruption.
• Keep your systems running safely.
• Stay productive.

• MAC OS, Linux, Unix, Windows, and infrastructure devices.
• Vulnerability audits include security configurations, OS and application vulnerabilities, null passwords, patch-level related vulnerabilities, known hacking tools, malware, missing patches, out-of-date antivirus signatures, worms, Trojans, and more.

• Actionable information delivered for heterogeneous and dispersed environments.
• Composite discovery using agent and agent less methodologies will help you gain complete visibility and actionable intelligence.

• Modular components can be installed on the same or separate systems and scaled-up as needed.
• Multiple instances of the scan engine can be deployed across the enterprise, controlled remotely or locally.
• As the number of systems on the network increase so can the number of engines performing the scans.

• As your business grows, Lumension Scan will be there for you.
• Adapts to various organizational setups, so you can always integrate the scanner into new business structures.

• The Common Criteria Evaluation and Certification Scheme (CCS) Certification Body has asserted that Lumension Scan complies with all the specified security requirements.

• Customers and vendors are supplying best practices to ensure quality and security of software solution.
• Gives you peace of mind knowing that your scanning experience will be safe and that you comply with security requirements.