Government Drivers and Challenges
While many government agencies have established endpoint security policies, they do not have the right security management software to enforce them. The threat of data leakage and network instability or disruption comes from outside the agency walls as well as from within.
Users continue to run software that is either unauthorized or is without the latest patches, opening the doors to cyber criminals and cyber terrorists. Users can also remove data from government networks via removable devices (such as USB flash drives) and if the data is not encrypted, sensitive information can be exposed.
All of this can expose vulnerabilities that enable the theft or loss of critical information. Recent security violations have sparked legislative requirements and standards-based protocols from NIST around security controls and data protection that impact both Civilian and DOD agencies. By developing solutions in lock-step with these requirements and standards, Lumension provides agencies with the ability to ensure compliance. Specifically, Lumension Vulnerability Management™ Solution has been validated by NIST as conforming to the Security Content Automation Protocol (SCAP) and its component standards.
Civilian Solutions: Comply with Endpoint Security Mandates and Protocols
DOD Solutions: Comply with Endpoint Security Mandates and Protocols
Government Solutions
Lumension’s Security Management Solutions Secure Critical Information at the Endpoint
Lumension’s Common Criteria EAL 2 Certified security management software protects against internal risks and external threats targeting government organizations by providing comprehensive vulnerability management, endpoint security, and data protection solutions. These solutions include:
| Challenge |
Lumension Solution |
| Comply with requirements for safeguarding the integrity and availability of sensitive data and IT assets. |
Lumension® Vulnerability Management Solution removes the risk of classified data from being improperly disclosed. You can prove compliance with DCID 6/3 and OMB M06-16 by providing a detailed audit trail of all device and application execution attempts. You can also track data that is copied to and from removable devices, control what data is allowed to be copied to a device at the file level and patch and remediate vulnerabilities before they can be exploited to access sensitive data.
Lumension® Data Protection Solution controls and monitors the flow of inbound and outbound data via removable devices / media and protects data using state-of-the-art AES-256 encryption.
Lumension® Endpoint Protection identifies your agency security holes in the protection of information through comprehensive auditing capabilities. |
| Comply with security configuration requirements as outlined by the FDCC and mandated by OMB M07-11. |
Lumension® Vulnerability Management Solution maps technical controls to policies through the import of SCAP documents, identifies non-compliant security configurations through comprehensive network and agent-based scanning capabilities. Enforces and maintains required security configurations through rapid remediation of non-compliant machines and enables you to prove compliance with OMB M07-11 by providing high level and detailed reports of enterprise endpoint configurations.
Lumension® Vulnerability Management Solution has been validated by NIST as conforming to the Security Content Automation Protocol (SCAP) and its component standards. |
| Meet strict requirements posed by the National Information Assurance Partnership (NIAP) Common Criteria Evaluation and Validation Scheme for IT Security (CCEVS). |
Lumension® Vulnerability Management, Lumension® Endpoint Protection and Lumension® Data Protection are all certified, maintain audit readiness and increase your security posture. |
| Prevent malware execution originating at an endpoint. |
Lumension® Endpoint Protection prevents the execution of malware and zero-day threats through the use of application whitelisting. |
| Improve IT system performance. |
Lumension® Vulnerability Management, Lumension® Endpoint Protection, and Lumension® Data Protection all provide key capabilities that improve IT system performance: through standardizing endpoint configurations, patching vulnerabilities and by whitelisting applications and removable devices to ensure that only those authorized can execute on your network. |
| Reduce endpoint security TCO. |
Lumension® Vulnerability Management Solution minimizes security or DCID 6/3, OMB M06-16, and OMB M07-11 compliance crisis response and remediates vulnerabilities quickly and with fewer required resources. |
| Improve end user productivity. |
Lumension® Endpoint Protection blocks unwanted, non-business desktop applications and enforces policies to ensure endpoints run as expected. |
| Enforce software license compliance within the agency. |
Lumension® Endpoint Protection ensures only authorized software applications are running on agency endpoints. |
Lumension solutions have gone through rigorous testing and have achieved certification and approval from a multitude of regulatory bodies and federal agencies.
To locate your Lumension Security Government solution provider, visit the solution provider page and select "Government Solution Provider" in the partner type drop down.
