PatchLink Enterprise Reporting

Overview

Consolidate Patch and Vulnerability Data from Across the Enterprise

PatchLink Enterprise Reporting gathers data snapshots from each PatchLink Update server in your environment, on a pre-defined, automated basis. The data is uploaded to a separate Enterprise Reporting server, via secure RSA encrypted transmissions, ensuring that data analysis does not interfere with critical assessment and remediation activities. Once uploaded, the data is consolidated into the central Enterprise Reporting data warehouse repository for centralized analysis and reporting.

Assess Business Risk with Powerful Data Analysis

PatchLink Enterprise Reporting allows you to analyze all aspects of your patch and vulnerability management process. The solution delivers “go anywhere” data mining through a series of interactive reports which allow you to drill into any level of detail. You can start your analysis at a global level, and then drill down to view specific Update Servers. For granular analysis, you can further drill into the results for individual groups or network devices. Enterprise Reporting makes it easy to analyze and interpret a wide range of vulnerability and inventory information, with graphical representations of data for:

• Vulnerability Management
• Asset Management
• Trending Analysis

Enterprise reporting provides role-based access to data and reports, making it fast and easy for users to identify data that is critical to their area of responsibility and ensuring that information is viewed only by individuals with proper authority. And because many enterprises already have existing analysis and reporting tools, Enterprise Reporting’s open database schema integrates with any ODBC/OLEDB compliant reporting tool, including leading third party report generators from Business Objects, Crystal Reports and Microsoft.

	Vulnerability Management: Understand the effectiveness of vulnerability management activities through a variety of high level graphical and detailed tabular report options.
	Asset Management: The Asset Management reports allow quick access to enterprise-wide devices and associated hardware and software.
	Trending Analysis: The Trending reports offer a variety of time intervals such as daily, weekly, monthly, quarterly, and annually along with a specific day of the week to view data in an organized fashion.

Demonstrate Compliance through Custom Reporting

To effectively demonstrate compliance with IT security policies and industry regulations, you need the ability to rapidly create custom compliance reports based on your unique security policies and key process indicators. By enabling you to create policy-based vulnerability management reports, Enterprise Reporting accurately demonstrates the real-time status of your security posture to support internal policy enforcement or compliance with IT security aspects of government regulations such as Sarbanes-Oxley, HIPAA, FISMA and the European Directive. Enterprise Reporting makes custom reporting easy by providing multiple report building options:

• Edit any of the two dozen compliance, asset management and trending reports in our Report Library to meet your unique requirements
• Create your own custom reports using your existing reporting tool
• Engage the PatchLink Professional Services team to create custom reports for you

Features and Benefits

• Auto Report Generation & Distribution - Schedule automated report generation and immediate email distribution of reports to authorized users
• Comprehensive Report Library - Over 30 standard reports for vulnerabilities, patch deployment, inventory, compliance, and more are included
• Data Mining - Interactive reports allow you to “drill down” into report data, drilling from a global view of all users down to individual groups and entire Update servers down to individual devices.
• Efficient Data Consolidation - Installs on a separate server to minimize disruptions to PatchLink Update, enabling you to run reports without interrupting key patch and vulnerability tasks
• Enterprise Dashboard - Global view of vulnerability status for all enterprise assets provides a unified look at the health of your enterprise.
• Extensible to 3rd Party Reporting Tools - Works seamlessly with third party reporting tools including SQL Reporting Services, Business Objects, Crystal Reports, and more
• Group Hierarchy Reporting Structure - Ability to report on custom nested groups created within PatchLink Update and directory service groups designated in your Microsoft Active Directory Services structure
• Instantaneous Results - View current status of vulnerability management efforts with up-to-minute reports
• Open Reporting Schema - Data views make it easier to find reporting data; underlying queries are exposed to easily create custom reports
• Policy-Based Reporting - Flexible policy-based reporting enables you to substantiate compliance with security aspects of government regulations such as Sarbanes-Oxley, HIPPA, FISMA and others
• Secure, Automated Data Transfer - Data from multiple PatchLink Update Servers is automatically transferred to a secure central repository using RSA encryption

ANALYST QUOTE
According to a recent Forrester report titled “The Myths of Information Security Reporting”, senior managers today must not only manage and measure the information security program but they must also translate those measurements into meaningful reports for senior executives.

Requirements

Minimum System Requirements:

*Note: If you are implementing SSL, an SSL Acceleration card is recommended

Minimum Software Requirements:

Supported Operating Systems:

• Microsoft Windows Server 2003, Standard Edition with SP1
• Windows Server 2003, Enterprise Edition with SP1
• Windows Server 2003 R2, Standard Edition
• Windows Server 2003 R2, Enterprise Edition