BigFix Security Configuration Management
BigFix Security Configuration Management provides a comprehensive set of technical controls that help IT organizations achieve compliance and best practices goals through detecting and enforcing organizational policies on Windows, Unix, and Linux systems.
Features
- Automated configuration visibility, policy setting, and enforcement
- Align security configuration management with best practices from SANS, US National Institute of Standards and Technology (NIST), US National Security Agency (NSA), and Microsoft via subscriptions to prepackaged BigFix-ready remediation policies
- Optional BigFix Fixlet Message library support for Defense Information Systems Agency Security Technical Group (DISA STIG) and Federal Desktop Common Configuration (FDCC) standards
- Includes BigFix Security Policy Manager that automates and enforces security configuration policy conformance along with subscriptions to a growing library of pre-packaged BigFix Fixlet messages covering password protection, information shares, software patch and update status and other issues
- Policy enforcement for off-LAN and off-network endpoints
- Ad-hoc queries and reporting
Benefits
- Pre-packaged policy libraries speed time to implementation
- Customizable content to meet specific and/or changing requirements
- Shorten remediation cycles to hours and minutes from days and weeks
- Pre-empting approach to closing off weaknesses and vulnerabilities before they can be exploited
- Real-time reporting against goals and compliance requirements
Recommended option for the Security Configuration and Vulnerability Management Solution Pack or available a-la-carte.