Content

IT Risk Management

Proven vulnerability management and policy assessment

McAfee risk management solutions speed the policy assessment, vulnerability management, remediation, and reporting efforts required to protect businesses of all sizes. Our compliance and security expertise and efficient technology help you identify and mitigate the risks associated with external and internal threats, data theft, and weaknesses in your vulnerability management program. You gain a complete picture of your organization’s exposure and reduce the headache, complexity, and expense of measuring and mitigating IT risk.

Tab Navigation

Overview:

Key Benefits

  • Easier implementation and maintenance of controls—Implement controls easily, improve consistency, and speed enforcement of policy changes across systems and sites through centralized management of policy creation and updates
  • Unified data collection, monitoring, management, and reportingSimplify collection and reporting of current violations and document improvements over time; view event and activity information in a common management console and consolidate data into meaningful reports for administrators, auditors, and executives
  • International framework and standards supportAdopt a broader and more formalized approach to risk with integrated product support for such international frameworks as ISO 17799 / 27002 and COBIT and support for standards-based policy content (XCCDF, OVAL)
  • Comprehensive host and network-based assessmentsDiscover vulnerabilities and policy violations while eliminating firewall and credentialing issues through McAfee support of many different platforms and devices; we eliminate the need to choose between agent or agentless technology
  • Efficient integration of systems and processesMake decisions faster and move reliably through remediation processes as McAfee solutions share vulnerability, event, and threat data
  • Automated protection updatesAvoid extra work; McAfee software automatically downloads new threat and vulnerability research from McAfee Avert® Labs

Products and Services:

Products

McAfee Policy Auditor—Automate auditing processes more efficiently with advanced, purpose-built IT auditing; leverage open security standards and integration to shrink time spent on internal and external reviews

McAfee Remediation Manager—Enforce compliance using automated or on-demand remediation of noncompliant or vulnerable systems

McAfee Total Protection for Compliance—Integrate host and network scans to assess every system for patches and policy compliance automatically

McAfee Total Protection for Data—Employ strong encryption, data loss prevention, authentication, and policy-driven security controls to safeguard critical data

McAfee Vulnerability Manager—Identify vulnerabilities and policy violations and prioritize your IT resources to protect your most critical assets first

McAfee Foundstone® Professional Services

Internal and External Network Security Assessments
Let us identify every live host, open port, and available service, then find and test potential points of attack, attempting to locate all vulnerabilities, especially those with the greatest potential impact on your business

Risk Assessments
Gain perspective with an independent audit of your risk profile. We introduce strategies, processes, and systems that help manage risk and mitigate risk conditions to help you comply with such regulations as GLBA, HIPAA, SB 1386, and PCI

Vulnerability Management Health Checks
Understand the gaps in your current vulnerability management program and identify areas where you may not have the right balance of people, process, and technology

Take the Next Step

Request a free qualitative and quantitative evaluation of your IT risk relative to ISO.