Complete, Real-Time Network Visibility and Proactive Vulnerability Assessment and Prioritization with Lumension Scan

Vulnerability Assessment Business Issues and Challenges

Today’s enterprise has virtually become borderless; devices are brought in and out of the environment due to increased workforce mobility. Organizations no longer have visibility into what systems and applications are running on the network at any given time. This makes it almost impossible to identify which vulnerabilities may exist within the network environment.

Download the Datasheet
Security vulnerabilities are growing exponentially. Malware has increased by 500%, and major AV firms are falling behind on documenting known signatures.¹ A July 2008 study² highlighted that 6437 new vulnerabilities were disclosed and nearly 410,000 new examples of malware, including viruses, worms, back doors, key loggers, Trojans, spyware, and rootkits were released the previous year.

Even more alarming is that 90% of security vulnerabilities could be exploited remotely, i.e. over the network³. It’s evident that organizations need a solution that addresses all of these concerns and improves their security posture; one that allows real-time visibility and proactive vulnerability management.

Overview

Lumension® Scan, a component of Lumension® Vulnerability Management, is a complete stand-alone, network-based scanning solution that performs a comprehensive external scan of all devices connected to your network, both managed and unmanaged. Once assets are identified, the powerful, yet easy-to-use Lumension Scan detects weaknesses on these devices before they can be exploited.

Lumension Scan provides:
  • rapid and complete asset discovery and inventory of all devices on the network
  • thorough and accurate network-based software and configuration vulnerability assessment
  • risk-based vulnerability prioritization for identified threats
  • continuously updated vulnerability database for orderly remediation
  • comprehensive management and audit reporting

How it Works

  • 1. Your network is swept to identify and inventory all network devices
  • 2. A comprehensive vulnerability and configuration assessment scan is then performed for software threats and missing patches
  • 3. Threats are prioritized and risk mitigation is identified to aid in the remediation process
  • 4. A multitude of actionable reports are available for you to evaluate assessments against the vulnerability database and prepare executive, administrative and compliance reports
Sources:
  1. AV-test.org
  2. Aberdeen Group, Vulnerability Management Report, July 2008
  3. Aberdeen Group, Vulnerability Management Report, July 2008