New Tripwire IP360 Vulnerability Management Update
It seems like only yesterday that two powerful forces in the Security and Vulnerability Management market—Tripwire and nCircle—came together to form a new security giant. Now here we are only a few months later releasing our 3rd update to our Vulnerability Management solution since the acquisition.
Today I’m excited to announce Tripwire IP360 7.2.—the latest in a series of a series of updates that deliver robust functionality and enterprise-class performance, while laying the groundwork for bigger, better, and bolder things in the future.
Tripwire IP360 7.2 helps IT security organizations manage more with less, automate compliance with reporting requirements, and get even more from the industry’s best vulnerability management solution. Here’s a few of the highlights:
Streamlined Scan Configuration Management
In large enterprise networks it can be difficult to manage distributed scanning across many scanning devices.
Vulnerability management products that offer only the ability to manage a single scan configuration, no ability to change configurations in bulk, or move configurations from one scanning device to another incur significant operational overhead for administrators, making the product more expensive and frustrating to manage.
With IP360, customers can quickly and easily manage distributed scanning across many scanning devices. Users simply access the device profiler provisioning screen from a “manage” button in the IP360 scheduled scans screen, or directly as a dashboard widget after logging into IP360.
This set of functionality allows users to rapidly add new scan configurations, easily move sets of scans to new Device Profilers, and quickly delete or deactivate sets of scan configurations.
Federal agencies are required to conduct monthly scans using SCAP-based compliance policies and upload their results into the CyberScope tool in the required XML format.
Gathering all of the required scan data and formatting the results into the appropriate format to comply with reporting requirements can be a complicated and time consuming process. Fortunately with IP360 Federal, customers can leverage IP360’s native SCAP support to automate the reporting process.
There is also a graphical report option that produces a simplified report comparing scan results to SCAP policies and view the compliance of the assets scanned.
The output contains asset inventory information (CPEs), compliance information (CCEs) and vulnerability information (CVEs) from the scans selected. This output has been validated for import to CyberScope and federal agencies can upload this information to comply with the monthly reporting requirement.
In addition, IP360 Federal customers can now fully leverage Tripwire’s DynAgent technology to gather detailed host information without the management overhead and complexity of a permanent software agent.
IPv6 Vulnerability Scanning API Support
For organizations that have deployed IPv6, it is essential that assets and networks using the new addressing scheme are inventoried and protected by vulnerability management program.
However, not all vulnerability management solutions support IPv6. IP360 offers the ability to run scheduled or on-demand scans of IPv6 assets with full support through the IP360 API, ensuring protection of all assets across the enterprise
Want to Learn More?
For more details on what’s new in Tripwire IP360, download the overview brief http://www.tripwire.com/register/whats-new-in-tripwire-ip360-v72
If you’d like to learn more about Tripwire’s Vulnerability Management solutions, visit our website http://www.tripwire.com/it-security-software/enterprise-vulnerability-management/.
- Configuration Compliance and Patch Management Processes
- Control and Capabilities Drive Enterprise Security Confidence
- Security Configuration Management for Dummies
- SecureCheq Uncovers Critical Configuration Vulnerabilities
P.S. Have you met John Powers, supernatural CISO?
Title image courtesy of ShutterStock