Performance, Security & Incident Response

Security & Compliance

Challenge

Your infrastructure has a lot of servers that need managing, and every single server could be running hundreds of pieces of software, each of which might have security vulnerabilities. How do you identify if a vulnerability affects you, match the affected version to servers in your infrastructure that are running it, and remediate in a timely manner?

And when you aren’t actively remediating vulnerabilities, how can you be sure all of your servers are in compliance with your password security policy, have had their PW’s or Keys rotated, or are coming up due or are overdue for rotation?

Solution

Device42 brings sanity to the software security and remediation process. Because Device42 does Asset Management, License Management, Password management, and CVE alerting, the system contains all the information you need to identify affected software, the servers running that software, and the access credentials you’ll need. All that’s left to do is execute the remediation.

When it comes to passwords and SSH keys, Device42’s password and audit history trails ensure every password related action is recorded. Reporting capabilities ensure compliance with customizable reports showing exactly which passwords have been changed and when and which passwords are due to be changed.

Highlights

  • Alerts tell you when a CVE affects software you are running
  • Shows you CVE’s by device so that you can patch device-by-device
  • Shows you the recommended remediation
  • All information needed to remediate is readily available
  • Powerful, schedulable reporting ensures password compliance
  • All password related actions are logged (add, change, delete, even view!)
  • A searchable audit trail ensures passwords haven’t been compromised