• Solutions
  • Overview
  • Network Security
    • Vulnerability Scan
    • Penetration Testing
  • Government
    • SCAP
    • FISMA
    • CAG 20
  • Industry Compliance
    • PCI
    • HIPAA
    • SOX
    • COPPA
    • GLBA
    • NERC
  • Consultants
  • Enterprise
  • Small Business
• Products
  • Overview
  • Software
    • SAINT® scanner
    • SAINTexploit^TM
    • SAINTmanager^TM
    • SAINTwriter®
  • On Demand SaaS
    • WebSAINT PRO^SM
    • WebSAINT®
  • Appliances
    • SAINTbox^TM
    • SAINTstick^TM
• Services
  • Overview
  • PCI Compliance
  • Vulnerability Assessment
  • Penetration Testing
  • Web App. Assessment
• Customers
  • Overview
  • Case Studies
  • Testimonials
• Support
  • Overview
  • Technical Support
  • Certification Training
  • Videos
• Resources
  • Overview
  • Literature
  • Request Demo
  • Request Evaluation
• Partners
  • Overview
  • SAINT Partners
  • Contact Partners
• Company
  • Overview
  • Contact Us
  • News
  • Events
  • Careers
  • Management

• Solutions Overview

Network Security –

• Vulnerability Scan
• Penetration Test

Government Compliance –

• SCAP
• FISMA
• CAG 20

Industry Compliance –

• PCI
• HIPAA
• SOX
• COPPA
• GLBA
• NERC

 

• Solutions for Consultants
• Enterprise Solutions
• Small Business Solutions

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Enterprise Solutions

Identifying vulnerabilities that exist throughout the network is good practice for mitigating risk and improving security. This process is typically performed by an individual or small team of practitioners responsible for assessing vulnerabilities to critical areas of the network. Security officers face the challenge of monitoring not just critical areas of the network, but all systems, devices and applications. SAINT’s scalable vulnerability scanning technology, complemented with flexible licensing, permits any security officer to assess all targets on the largest of networks.

Although there are many compelling reasons for discovering all vulnerabilities throughout the enterprise, the volume of threat data could become overwhelming for a small team of security professionals. By using SAINTmanager as a centralized management console, organizations can now incorporate a distributed vulnerability management program that encompasses delegation from security officers to departmental/asset owners. Many organizations have a phased approach for implementing enterprise vulnerability management. Regardless of the present stage, migration to a distributed model is recommended for those who want to identify, prioritize, and respond to new threats versus chasing threats.

Response time for mitigating vulnerabilities is becoming more important as the average time between vulnerability disclosure and the attack code (exploit) being released is decreasing dramatically. Another benefit of a distributed model is verification scanning, which validates remediation, accompanied by trending analysis, illustrating that security posture is improving.

Two Approaches – Individual Scanners or SAINTmanager

The image below depicts individual SAINT scanners that can assess the entire internal and external network by each security engineer, regardless of the network size.

An alternative for larger organizations is the management of multiple scanners using SAINTmanager. Here the security engineer is managing vulnerabilities by delegating roles and responsibilities for assets/departments.

Please contact a SAINT consultant to discuss your enterprise requirements and determine which of the above approaches is best for you.

Copyright © 2010 SAINT Corporation. All Rights Reserved.