Play your cardsright - stay aheadof the threatsIdentify and Patch Software Security Vulnerabilities and Prevent Configuration Drift1National VulnerabilityDatabase, 1. March, 2009IT administrators can’t possibly stay updated on and implement the flood of software vulnerabilitypatches consistently released by all the vendors used in their heterogeneous environments. Withsoftware companies shortening software and OS lifecycles and releasing software prematurely,the number of bugs and design flaws is growing exponentially – on average, 19 new vulnerabilitiesare released per day 1 .Rapid, Accurate and Secure Patch ManagementToday’s IT departments are busy, spending the majority of their time fixing virus-infected userdesktops and reactively fighting malware attacks, rather than proactively securing the organization’snetwork and preventing security vulnerabilities from being exploited.Key FeaturesComprehensive Assessmentof IT AssetsOpen Architecture to SupportComplex EnvironmentSupports HeterogeneousEnvironmentsRapid, Automated PatchDeploymentNAC SupportAutomatic NotificationsHighly ScalableMulti-Patch DeploymentsFlexible ReportingRole and Policy-basedAdministrationOne recent virus attack was followed up with 6,000 different variations in just one night, but a patchfor the underlying vulnerability had been available for a month. Add to that the proliferation of Web2.0, social networking, and virtual environments creating new avenues to introduce malware into theworkplace.Norman Patch and Remediation streamlines and automates the patch management process in eventhe most complex, heterogeneous environments. Through proactive alerting on issues, you can addressthem immediately.Norman Patch and Remediation provides:• Rapid, accurate and secure patch management• Automated collection, analysis and delivery of patches• Security for your organization from worms, trojans, viruses and other malicious threats• Single consolidated solution for heterogeneous environments provides effectivemanagement at a significantly reduced TCOHow Norman Patch and Remediation works:1. Discover - application, operating system andconfiguration vulnerabilities on managed endpointsthrough comprehensive agent-based scan.2. Remediate - vulnerabilities and rapidly deploypatches based on defined policies.3. Profile - for every patch is created including software,hardware, drivers and existing and missingpatches for each machine.4. Report - on operational, management andcompliance initiatives.
Said by a user:“We have not been subject to anymajor virus attacks since deployingthis product and using its centralizedmanagement capability.Critical patches can be quicklyapplied to all machines across ourdistributed network.”Key Features Comprehensive Assessment of IT Assets:Provides comprehensive understanding ofsecurity posture for inventory and managementof both physical and cirtual environmentsvia in-depth assessment of vulnerabilities,patch status, security configurations,installed software, and hardware inventory. Open Architecture: Supporting openstandards and multiple sources of content,Norman Patch and Remediation delivers acustomizable and diverse platform for operationalsecurity management. Supports Heterogeneous Environments:Vulnerability audits and remediation withwide support across major OS platforms(Windows, Linux, MacOS, Sun Solaris, HP,etc.), OSIX and infrastructure devices - allfrom one single console. Multi-Patch Deployments: Delivers multiplepatches to multiple computers in one distribution. Automatic Notifications: E-mail alerts canbe sent to administrators to notify them ofa variety of issues, including subscription orremediation failures and upcoming licenseexpiration. Comprehensive Remediation Actions:Vulnerability audits include security configurations,OS and application vulnerabilities,null passwords, patch-level relatedvulnerabilities, known hacking tools, malware,common worms, and P2P softwarechecks. Flexible Reporting: More than 20 reportsthat provide detailed information the patchand remediation management process,including agent policy status, vulnerabilitydeployments, asset inventory and more. Highly Scalable: Complete coverage forthe largest worldwide networks with highavailabilitytopologies and distribution pointarchitecture. Packages are cached locally,minimizing network traffic and optimizingbandwidth utilization. Role- and Policy-based Administration:Ensures that all your systems meet a mandatorybaseline policy – a key aspect ofcorporate security and regulatory compliance. NAC Support: Automatically assess endpointsas they attempt to gain access tothe network and remediate to a compliantstate before access is allowed.System requirementsServer: Windows Server2003 with Microsoft SQLServer 2005 and .NETFramework, 2008Agent Coverage: AppleMac OS X, HewlettPackard HP-UX, IBMAIX, Novell SUSE Linux,RHEL, Sun Solaris,Windows: 98, NT, 2000,XP, Vista, WindowsServer: 2003, 2008Key Benefits• Enables you to stay ahead of remote threats• Streamlines patch management across heterogeneous environments• Provides visibility into real-time patch status and overall security posture• Reduces TCO by saving IT operations time and effortNorman ASA is a world leading company within the field of data security, internet protection and analysis tools. Through its SandBox technologyNorman offers a unique and pro active protection unlike any other competitor. While focusing on its proactive antivirus technology, the companyhas formed alliances which enable Norman to offer a complete range of data security services.Norman was established in 1984 and is headquartered in Norway with continental Europe, UK and US as its main markets.