McAfee Vulnerability Manager

McAfee Vulnerability Manager

A união de desempenho, detecção de ativos em tempo real e varredura baseada em risco para um monitoramento contínuo de ativos

Próximas etapas:

Visão geral

O McAfee Vulnerability Manager, com seu recurso McAfee Asset Manager, oferece escalabilidade e desempenho inigualáveis, investigando tudo em sua rede de forma ativa ou passiva. Agora você descobrir dispositivos ocultos em sua rede, bem como smartphones, tablets e laptops que entram e saem nos intervalos das varreduras agendadas. Você vai ficar surpreso com tudo o que não via e fugia às suas varreduras, e isso pode estar pondo sua conformidade em risco. Milhares de organizações confiam no McAfee Vulnerability Manager para encontrar e priorizar vulnerabilidades, com distribuições que variam de poucas centenas de nós à contínua varredura de mais de quatro milhões de endereços IP. O McAfee Vulnerability pode descobrir e avaliar, de forma automática ou programada, tudo o que tiver um endereço IP ou que usar sua rede, revelando a conformidade de todos os ativos da rede.

O Vulnerability Manager proporciona:

Auditoria e correção com base em prioridades — Combina informações sobre vulnerabilidade, gravidade e importância dos ativos para identificar, classificar e eliminar rapidamente as violações e vulnerabilidades de sistemas e dispositivos compartilhados em rede.

Proteção de rede ativa e passiva: combina recursos ativos e passivos de monitoramento e descoberta de rede, revelando dispositivos virtualizados, móveis e ocultos em sua rede.

Prova de "invulnerabilidade" — Uma das maiores necessidades dos auditores é provar que você não está vulnerável a ameaças. Isso é um atributo importante do McAfee Vulnerability Manager.

Identificação e correlação de novas ameaças — Classificação automática do potencial de risco de novas ameaças por meio da correlação das ocorrências com os seus recursos e com dados de vulnerabilidade.

Avaliações de auditoria de políticas e conformidade — Define valores de verificações de políticas e determina se a organização está em conformidade com as principais normas. Por meio de um assistente de fácil utilização, você pode obter modelos para normas SOX, FISMA, HIPAA, PCI, entre outras.

Emissão de relatórios flexível — Categoriza os dados por ativo ou rede e utiliza filtros avançados para selecionar e organizar os resultados nos relatórios. Você pode até mesmo criar relatórios durante as varreduras.

Cobertura de conteúdo ampla e detalhada — Realiza verificações autenticadas e não autenticadas, atualizadas automaticamente a todo momento pelo McAfee Labs, o maior centro de pesquisas de ameaças do mundo. Isso ajuda você a se aprofundar nos sistemas operacionais e dispositivos de rede para encontrar vulnerabilidades e violações de políticas.

2014 ESG Lab Review: McAfee Vulnerability Manager Earns Strong Evaluation
Gartner MarketScope for Vulnerability Assessment: McAfee rated Strong Positive

Recursos e vantagens

Analisar detalhadamente os aplicativos da Web

Faça varreduras profundas de aplicativos Web para saber onde concentrar os seus esforços de criação de código-fonte antes que hackers possam explorar os dados críticos da sua empresa. Essas varreduras incluem verificações necessárias de PCI, bem como cobertura das categorias 2010 OWASP Top 10 e CWE-25.

Iniciar varreduras em minutos

Escolher uma instalação completa ou personalizada em hardware físico, virtual ou em nossos appliances robustos; utilizar os sistemas existentes de gerenciamento de ativos, como LDAP, Active Directory ou McAfee ePolicy Orchestrator (ePO), ou permitir que a primeira varredura detecte os ativos.

Identifique vulnerabilidades e violações de políticas com o mais alto nível de precisão

Através da combinação de monitoramento ativo e passivo, testes de penetração, varredura autenticada e varredura sem credenciais, o McAfee Vulnerability Manager faz uma varredura precisa de tudo em sua rede, tornando o gerenciamento de vulnerabilidades mais simples do que nunca.

Utilizar conteúdo abrangente e personalizável nas verificações e nos relatórios

Economizar muitas horas com o suporte a SCAP e modelos de política predefinidos e atualizados. Nossas amplas verificações validam o alinhamento com exigências governamentais e legais, além de criar scripts e verificações personalizadas para testar sistemas próprios e herdados.

Atender às exigências governamentais e de mercado

Obter a certificação EAL da Common Criteria e manter-se nos padrões da criptografia FIPS-140-2. O McAfee Vulnerability Manager inclui modelos das normas e dos modelos de conformidade mais populares.

Obtenha recursos incomparáveis de cobertura de vulnerabilidades, precisão de varreduras e proteção contra malware

Ultrapasse as portas e configurações para inspecionar sistemas, bancos de dados e aplicativos em todos os ativos compartilhados em rede, desde smartphones até servidores protegidos.

Aumente a flexibilidade e melhore o desempenho

Personalize a implantação, as varreduras, a emissão de relatórios e os consoles de gerenciamento com a velocidade necessária mesmo em redes com milhões de nós, independente de as operações estarem centralizadas ou separadas.

Comprove a "invulnerabilidade" às ameaças

Obtenha evidências incontestáveis (como os resultados esperados e reais das varreduras, sistemas não examinados e varreduras malsucedidas) a fim de documentar a "invulnerabilidade" de sistemas específicos (uma exigência de auditoria cada vez mais comum).

Reaja às ameaças com a coleta global de informações de ameaças da McAfee

Aproveite as informações de sensores do mundo todo, que levam centenas de pesquisadores do McAfee Labs rumo às últimas mudanças no cenário de ameaças, proporcionando avaliações de riscos em tempo real e avisos de ameaças.

Requisitos de sistema

Software Vulnerability Manager
Implemente o Vulnerability Manager como software em seu hardware ou em um ambiente virtualizado. Requisitos mínimos para implantação do software:

  • Hardware
    • CPU: x86 multi-core, 2 GHz ou superior (quad-core recomendado)
    • RAM: Mínimo de 2 GB (4 GB recomendados)
    • Espaço em disco: mínimo de 80 GB (200 GB para o banco de dados)
  • Host virtual
    • VMware Virtual Infrastructure 3, vSphere (ESX/ESXi)
    • VMware Workstation
  • Sistema operacional
    • Microsoft Windows 2003 Server (32 bits) com Service Pack 2 (SP2) ou superior
  • Banco de dados
    • Microsoft SQL Server 2005 com SP2 ou superior (qualquer edição)
    • Todos os hotfixes e patches do SQL

Appliance Vulnerability Manager MVM3100
Escolha este appliance dedicado e robusto para obter uma implementação ainda mais rápida e fácil. Ele inclui todos os softwares necessários em um banco de dados de nível corporativo. ‏Requisitos mínimos de implementação do hardware:

  • Hardware
    • Chassi 1U para instalação em rack
    • Xeon de 4 núcleos
    • 4 GB de RAM
    • 2 x 500 GB RAID 1
    • Fontes de alimentação redundantes
    • Gerenciamento de iluminação
    • 4 portas de varredura GbE (compatível com VLANs)

Demonstrações / Tutoriais / Vídeos

Demonstrações

See how McAfee Asset Manager easily detects the presence of a new smartphone on a wireless network and interacts with McAfee Vulnerability Manager to instantly scan the device.

Learn how McAfee Vulnerability Manager can continuously discover, evaluate, and monitor evolving risks from devices on your network.

Learn how McAfee Risk and Compliance products scan your entire network, providing complete visibility and ensuring proper protection.

Tutoriais

This video introduces you to the new vulnerability check editing/creation feature in McAfee Vulnerability Manager.

This video shows you how to create a vulnerability check, looking for a software application version installed on a Windows machine.

For guidance on how to use this McAfee product, watch the Quick Tips video listed above.

This collection of Quick Tips videos details some of the key features of McAfee Vulnerability Manager, including custom reports, asset discovery, and remediation workflow.

Vídeos

McAfee Vulnerability Manager, with its McAfee Asset Manager feature, delivers unrivaled scalability and performance, actively or passively canvassing everything on your network.

Prêmios / Análises

Varrendo um milhão de endereços IP com o McAfee Vulnerability Manager

O ESG Labs realizou testes práticos com o appliance McAfee Vulnerability Manager MVM3100. Saiba mais sobre a facilidade de distribuição do Vulnerability Manager, conheça sua eficiência no dimensionamento para redes grandes e obtenha uma amostra das vulnerabilidades observadas, com lições para as equipes de segurança corporativa.

Gartner MarketScope for Vulnerability Assessment (avaliação de vulnerabilidade Gartner MarketScope)

“O McAfee Vulnerability Manager proporciona avaliação de configuração de segurança sem agentes e integração ao McAfee Policy Auditor (baseado em agentes), com cobertura dos controles DISA STIG, NSA, FDCC e CIS. O McAfee Vulnerability Manager oferece recursos flexíveis de gerenciamento de ativos, geração de relatórios de correção e fluxo de trabalho.”

Análise do produto McAfee Vulnerability Manager

Em uma avaliação independente realizada pela S3KUR3 Inc., o McAfee Vulnerability Manager foi qualificado nos seguintes termos: "Nenhuma outra solução combina flexibilidade, varredura abrangente e capacidades poderosas de correção em um mesmo pacote".

SC Magazine Best Buy
Vulnerability Manager é nomeado como "melhor compra" pela SC Magazine

O McAfee Vulnerability Manager é uma ferramenta avançada com base em appliance. Ele proporciona avaliação de vulnerabilidades, testes de penetração e varredura de aplicativos Web, juntamente com detecção robusta de dispositivos e recursos de conexão com LDAP (Lightweight Directory Access Protocol) e Microsoft Active Directory para gerenciamento de recursos.

Casos de Clientes

Abtran (english)

McAfee security risk management solutions help Abtran meet clients’ increasing security requirements.

Destaques
  • Provided multiple layers of security risk management protection for Abtran’s clients
  • Reduced IT hours spent supporting, administering, and monitoring endpoint security
  • Cut time to produce weekly security reports from three or four hours to less than two minutes
  • Migrated easily and seamlessly from existing anti-virus solutions

Alcatel-Lucent Shanghai Bell (english)

Alcatel-Lucent Shanghai Bell uses McAfee Network Security Platform to secure 100 Mbps to 10 Gbps corporate networks against threats and attacks.

Destaques
  • Increased identification and interception of up to 99% of the threats
  • Improved the work efficiency and allowed the information security and network departments to cooperate with each other in monitoring security threats and risks

Arab National Bank (english)

Arab National Bank uses McAfee ePolicy Orchestrator (ePO) software to manage endpoint protection across 5,500 endpoints.

Destaques
  • Reduces manpower required to manage endpoint security from six people to two
  • Accelerates deployment of data loss protection—70 percent faster than competitive solutions faster than competitive solutions
  • Cuts administrative reporting from several days to minutes
  • Saves $152,000 in reduced manual intervention, thanks to integration with third-party security solutions

Arab National Bank (english)

Arab National Bank uses McAfee ePolicy Orchestrator (ePO) software to manage endpoint protection across 5,500 endpoints.

Destaques
  • Reduces manpower required to manage endpoint security from six people to two
  • Accelerates deployment of data loss protection—70 percent faster than competitive solutions faster than competitive solutions
  • Cuts administrative reporting from several days to minutes
  • Saves $152,000 in reduced manual intervention, thanks to integration with third-party security solutions

Bank Central Asia (english)

Bank Central Asia achieves compliance and saves time with McAfee ePO Software.

Destaques
  • Eased compliance with internal and industry regulations
  • Saved time through centralized management
  • Provided protection to computers, network, and data through integrated solutions

Cardnet (english)

Cardnet eliminates malware infections with comprehensive network, email, and endpoint security from McAfee.

Destaques
  • Total absence of known infections of any kind
  • Protected the entire IT infrastructure
  • Maintained IT security with a staff of three, versus 20 or more if the McAfee suite was not in place

CEMEX

CEMEX relies on McAfee to find system vulnerabilities and prevent data loss.

Destaques
  • Discovered and assessed systems vulnerabilities
  • Provided in-depth visibility regarding network assets
  • Reduced vulnerability false positives by 80%
  • Saved IT hours each week thanks to easy-to-use reports and minimal false positives
  • Prioritized threat response

Citrix Systems (english)

Citrix reduces risk with McAfee’s integrated security risk management platform.

Destaques
  • Deployed quickly and easily, saving $40,000 in deployment costs
  • Reduced incident response rate by 40% and overall TCO of security risk management
  • Dramatically eased security administration and accelerated patch deployment
  • Reduced remediation time by 70%

Dongfeng Nissan Passenger Vehicle Co., Ltd. (english)

With robust integration features built into ePO, users can handle data events and achieve stronger monitoring and control easily and quickly through the platform.

Destaques
  • Protected intellectual property

DSM (english)

DSM enlists McAfee to strengthen enterprise network security control and compliance.

Destaques
  • Provided full visibility into network traffic and connected systems
  • Simplified patch management
  • Improved compliance with regulations and policies
  • Increased efficiencies for significant cost savings

HCF (english)

HCF gets comprehensive anti-malware protection and streamlined security management with McAfee.

Destaques
  • Smooth implementation
  • Easy identification of vulnerable areas
  • Meaningful reports for IT administrators who are only advised about attacks that are relevant to the environment
  • Enabled automatic enforcement of security policies; ensuring network integrity
  • Automation of patch management freed up IT staff to focus on strategic work

Idaho State Tax Commission (english)

Idaho State Tax Commission chooses McAfee to embed security in a new network infrastructure.

Destaques
  • Identified vulnerabilities and blocked threats
  • Delivered reliable endpoint protection
  • Enabled compliance with National Institute of Standards and Technology (NIST) security guidelines
  • Provided support for the commission’s defense-in-depth security strategy
  • Helped increase security awareness among network users

Integral Energy (english)

Integral Energy proactively assesses and manages vulnerabilities with McAfee Vulnerability Manager.

Destaques
  • Discovered and assessed system vulnerabilities quickly and accurately
  • Enabled threat prioritization and proactive, informed decision making
  • Provided in-depth visibility regarding network assets
  • Facilitated compliance with ISO 27001 standard

Intelsat (english)

Intelsat trusts McAfee to protect user and network devices globally.

Destaques
  • Protected a diverse environment from internal and external threats, including the inherent risks of a fluctuating population of 250 to 500 contractors
  • Managed the entire server system with 1.5 full-time employees (FTEs)
  • Reduced solution cost by 75% over a la carte purchases from separate vendors
  • Standardized a security environment that previously required five vendors
  • Complied with regulations, including SOX, HIPAA, and Department of Defense (DoD)

Macquarie Telecom (english)

McAfee solutions offer integrated protection from distributed denial-of service (DDoS) threats at the Macquarie Telecom perimeter.

Destaques
  • Fully integrated security platform easily managed from a central dashboard.
  • Visibility and control for clients over their hosted security environments.
  • Competitive advantage through partnership with a trusted technology provider.

Notícias / Eventos

Recursos

Diagramas tecnológicos

Assess Your Vulnerabilities (english)

McAfee integrates data and processes to make vulnerability management more effective and efficient. Our approach combines asset discovery and management, comprehensive vulnerability scanning, flexible reporting, and remediation workflows into a single vulnerability assessment solution.

Documentos

Conquer the Top 20 Critical Security Controls (english)

The strength of the Critical Security Controls (CSCs) is their ability to reflect the consensus of successful experiences captured and refined over multiple revisions. The CSCs help organizations break down operational silos by providing a pragmatic blueprint detailing where to focus efforts to achieve the greatest results. This white paper maps the quick wins within the first five CSCs to associated McAfee products, services, and partner solution capabilities — all part of the Security Connected platform.

Operational Efficiencies of Proactive Vulnerability Management (english)

Learn how automating and integrating Vulnerability Management Activities can reduce the operational cost of vulnerability management.

Discover. Evaluate. Act. (english)

This paper explains how to apply McAfee Vulnerability Manager with the McAfee Asset Manager feature to discover, evaluate, and promptly manage evolving risk. Through continuous network-based monitoring and the application of enterprise security intelligence, enterprises can mitigate security and compliance risks from IP-enabled devices that users install without administrator support, including servers, desktops, smartphones, tablets, virtualized systems, printers, and networking equipment.

Protect Critical Assets with Virtual Patching—Closing the Vulnerability Window Using Predictive Threat Protection (english)

The McAfee virtual patching solution provides a layered approach to security risk management, while adding the ability to apply a virtual patching strategy to your existing change-management process. It combines proven defenses and security insight with real-time Global Threat Intelligence to close the vulnerability window until patching can occur through your regular change-management processes.

Especificações

McAfee Vulnerability Manager

Para um resumo técnico do produto McAfee listado acima, consulte o data sheet do produto.

Relatórios

Gartner MarketScope for Vulnerability Assessment (english)

McAfee receives the highest possible rating of "Strong Positive" in the latest MarketScope for Vulnerability Assessment (VA) where VA vendors compete on management features, configuration assessment, price, reporting, and integration with other security products.

Resumos de soluções

Prioritize and Remediate Critical Risks Found by McAfee Vulnerability Manager (english)

McAfee Vulnerability Manager and Skybox Risk Exposure Analyzer (REA) combine to give customers an advanced solution to identify IT vulnerabilities, prioritize and evaluate security risks and attack scenarios, and mitigate critical risks before they cause harm.

SIEM: cinco requisitos que resolvem os maiores problemas corporativos

McAfee spoke with SIEM users and asked them to tell us about their primary issues with SIEM. This brief lists the top five issues along with corresponding customer case studies and use cases.

Ensure Compliance and Automate Change Management of McAfee Enterprise Firewalls (english)

The combination of McAfee Firewall Enterprise and Skybox Firewall Assurance, Skybox Network Assurance, and Skybox Change Manager continuously validate that your McAfee Firewall Enterprise solutions are optimally and securely configured to ensure continuous compliance, block unauthorized activity, and securely automate change management.

Continuous, Comprehensive Monitoring (english)

Learn how you can move to real-time vulnerability management with always-on discovery and integrated risk assessment.

Scanning Web Applications for Vulnerabilities (english)

McAfee Vulnerability Manager has a new web scanning capability, allowing you to discover, crawl, assess, report, and manage the vulnerabilities discovered in any number of internal or external web applications.

Quantitative Metrics to Measure, Model, and Manage IT Risk (english)

Prevari’s Technology Risk Manager (TRM) solution uses existing enterprise data combined with actuarial risk information to provide repeatable, quantitative, and predictive risk analytics.

Preventing Information Leaks (english)

Raytheon SureView integration with McAfee ePolicy Orchestrator (McAfee ePO) software enables governmental and commercial enterprises to deploy and seamlessly manage command and control of SureView clients across the entire organization through their existing infrastructure, allowing for speedy implementation and efficient management of an effective cyberaudit program.

Security Posture and Risk Management (english)

RedSeal Vulnerability Advisor analyzes the results of McAfee Vulnerability Manager in the context of the network to prioritize vulnerabilities requiring attention and offer network mitigation options.

Comunidade

Blogs

  • Shedding light on ‘Shadow IT’
    David Small - Janeiro 9, 2014

    BYOD, BYOA, BYOx. The IT industry is full of acronyms depicting its constant evolution and relationship with the professional world. First came the devices; employees saw the power of personal devices and insisted on using them in the workplace. And so the consumerisation of IT was born. After the devices came the apps. Companies reported […]

    The post Shedding light on ‘Shadow IT’ appeared first on McAfee.

  • Walking the Talk on Public-Private Partnerships
    Tom Gann - Agosto 16, 2013

    There’s been a lot of talk about the value of public-private partnerships in moving the U.S. toward a more robust cyber security posture. And let’s be honest:  there’s also been a lot of private sector skepticism about how much the Administration really believed in the concept or how much they would do to make it […]

    The post Walking the Talk on Public-Private Partnerships appeared first on McAfee.

  • Five Factors That Make D.C. Region a Cybersecurity Hub
    Tom Gann - Maio 29, 2013

    McAfee is based in Silicon Valley, but we know there’s more to tech than California. We recently joined the National Institute of Standards and Technology to launch the National Cybersecurity Center of Excellence, a joint effort among high-tech business, federal, state and local government and local universities located in Rockville, Md. The goal of the […]

    The post Five Factors That Make D.C. Region a Cybersecurity Hub appeared first on McAfee.

  • Getting Assurance in a Time Constrained World
    McAfee - Maio 20, 2013

    Nothing is as frustrating as when something goes wrong, especially when you have time constraints.  NIST has just released Special Publication 800-53, Revision 4: Security and Privacy Controls for Federal Information Systems and Organizations where a few notable items have been added to increase the confidence that security, practices, procedures and architectures of information systems […]

    The post Getting Assurance in a Time Constrained World appeared first on McAfee.

  • Response Now as Important as Prevention
    Leon Erlanger - Fevereiro 24, 2012

    The National Institute of Standards and Technology (NIST) has updated its Computer Security Incident Handling Guide to take into account the increasingly dire state of cyber security. As anyone who has followed the rush of high-profile incursions over the past year knows, it’s looking less and less possible to prevent the inevitable attack, no matter […]

    The post Response Now as Important as Prevention appeared first on McAfee.