• Solutions
  • Overview
  • Network Security
    • Vulnerability Scan
    • Penetration Testing
    • Social Engineering
  • Government
    • SCAP
    • FISMA
    • CyberScope
    • CAG 20
    • IAVA
  • Industry Compliance
    • PCI
    • HIPAA
    • SOX
    • GLBA
    • NERC
  • Consultants
  • Enterprise
  • Small Business
  • MSP Solutions
• Products
  • Compare Editions
  • Software
    • SAINTscanner®
    • SAINTexploit®
    • SAINTmanager®
    • SAINT Reporting
  • On Demand SaaS
    • WebSAINT PRO®
    • WebSAINT®
  • Appliances
    • SAINTbox®
• Services
  • Overview
  • PCI Compliance
  • Vulnerability Assessment
  • Penetration Testing
  • Certification Training
• Customers
  • Overview
  • Case Studies
  • Testimonials
• Support
  • Overview
  • Technical Support
  • Certification Training
  • Videos
• Resources
  • Overview
  • Literature
  • Request Demo
  • Request Evaluation
  • System Requirements
• Partners
  • Overview
  • SAINT Partners
    • USA
    • International
• Company
  • Overview
  • Contact Us
  • News
  • Events
  • Careers
  • Management

• Solutions Overview

Network Security –

• Vulnerability Scan
• Penetration Test
• Social Engineering

Government Compliance –

• SCAP
• FISMA
• CyberScope
• CAG 20
• IAVA

Industry Compliance –

• PCI
• HIPAA
• SOX
• GLBA
• NERC

 

• Solutions for Consultants
• Enterprise Solutions
• Small Business Solutions
• MSP Solutions

 

 

SANS 20 Critical Controls for Effective Cyber Defense: Consensus Audit Guidelines (CAG)

The SANS 20 Critical Controls identifies a subset of security controls that CISOs, CIOs, and IGs can focus on as their top, shared priority for cyber security attacks. The process of gathering these specific controls and sub-controls focused on identifying the highest priority defenses and represents a subset of controls found in other audit guidelines and documents.

SAINT is included on the SANS 20 Critical Controls User Vetted Tools List Control #10 - Continuous Vulnerability Assessment and Remediation

SAINT customers use SAINT’s capabilities to provide automated support to Control #10 – Continuous Vulnerability Assessment and Remediation:

• SAINT features scheduling of daily, weekly, monthly, or quarterly scans, and automatic updates by SAINTexpress.
• SAINT features authenticated scanning using a Windows domain administrator account and/or a UNIX/Linux SSH account, and a credentials manager to facilitate the storage of multiple sets of credentials.
• SAINTwriter features trend reports, which provide a historical comparison of scan results, and indicate new vs. pre-existing vulnerabilities.
• Custom reports in SAINTwriter can be generated to chart results, by network.
• SAINTmanager allows setting of due dates for tickets, and features automatic e-mail notification of overdue tickets.

Copyright © 2013 SAINT Corporation. All Rights Reserved.