Need some help with a product please click here!Sophos now offers Utimaco’s full suite of encryption and DLP products to protect your company’s….
Read More
PixAlert provides products and services [...]
Lumension, Inc., a global leader in operational endpoint security, develops, integrates and markets security software solutions that help businesses protect their vital information and manage critical risk across network and endpoint assets.
Lumension enables more than 5,100 customers worldwide to achieve optimal security and IT success by delivering a proven and award-winning solution portfolio that includes Vulnerability Management, Endpoint Protection, Data Protection, and Reporting and Compliance offerings.
Application Control (Sanctuary)
Prevent Malware and Unauthorized Software Applications with Application Control
Call Now – 0845 065 8243
Protect your organization against malware attacks before they occur by proactively controlling the applications executing on your desktops, laptops, servers, kiosks and POS systems with Lumension Application Control, a primary component of Lumension Endpoint Protection solution.
Centrally manage, monitor, and control applications with a whitelist approach that allows only authorized applications to run ensuring no malware, spyware, keyloggers, trojans, worms, viruses, zero-day threats and unwanted or unlicensed software will execute on your network and disrupt your business.
Lumension Application Control provides complete malware protection and increases IT and end-user productivity by preventing unwanted applications from causing configuration issues and consuming network bandwidth.
You’ll be audit-ready with a detailed audit trail of all application and device execution attempts along with proof that software licenses are in compliance. With no viral attacks to thwart, malware to hunt down, or incompatible applications to invoke the blue screen of death, you can spend more time on other projects instead of constantly fixing computers.
How It Works
- 1. Discover - Identify all executable files and devices, collect profiles and organize into pre-defined file groups.
- 2. Implement – assign permissions for applications to run based on executable, user, or user group attributes. Use an application whitelist approach to ensure that only authorized and legal applications can run on a computer. When a user wants to run an application, the OS request at the kernel level is intercepted by the Lumension driver. If the user has rights, then access will be granted. If the application is not known or the user does not have rights, then access will be denied.
- 3. Monitor – monitor the effectiveness of endpoint security policies in real time and identify potential threats by logging all application execution attempts and recording all policy changes and administrator activities.
- 4. Report – demonstrate policy compliance and ensure software license compliance to meet Sarbanes Oxley, HIPAA, PCI, and GLBA requirements by drilling down on suspicious behavior for security or legal follow-up.
- Eliminates unknown or unwanted applications in your network, reducing the risk of malware and spyware and ultimately improving network stability
Features & Benefits
Application Whitelisting – Blocks Malware Attacks
Automated Application Discovery – Saves Time and Improves Security
- Provides flexible and fast options to create or update whitelists.
Standard File Definitions – Saves IT Operations Time and Effort
- Speeds and simplifies whitelist definition with classified, pre-loaded whitelist of all supported OS files.
Automatic Authorization of Software Updates – Simplifies Software Updates and Decreases Risk
- Eliminates risk of accidentally restricting user access to frequently updated Microsoft applications.
Script / Macro Protection – Enhances Security Policy Enforcement
- Extends application policy enforcement to include specific scripts/macros, enabling business without compromising protection.
Path Protection – Delivers Flexible Support for Files
- Provides flexibility to support executable files for which hash definitions are not useful or applicable (i.e. auto-changing .exe files).
Flexible File Authorization – Improves Network Stability
- Provides flexible and fast option to identify new and updated applications for review and ultimately to generate whitelists.
Local Authorization – Maintains Administrative Control and Increases User Satisfaction
- Deliver flexibility to the user, without giving up administrative control by allowing trusted users to authorize applications locally, while maintaining a log for your review.
Spread Check – Ensures Network Security
- Contain risk of malicious code spreading through network due to local authorization by disabling suspicious executables that are locally authorized on too many computers.
Highly Scalable Architecture – Adapts to Your Growing Business
- Provides flexible and scalable deployment options in large and complex networks with a three tier architecture.
Powerful Log Analysis and Reporting – Ensures Audit Readiness
- Demonstrate policy compliance and drills down on suspicious behavior for legal or management follow up.
Offline Computer Protection – Delivers On-going Protection
- Ensure that remote/ disconnected users are constantly protected by keeping a local copy of updated hashes and permissions on each machine.
Active Directory and eDirectory Support – Reduces IT Operations Time and Effort
- Reduce setup and maintenance of users and user groups by leveraging definitions in existing Active Directory and eDirectory.
Multi-Language Support – Delivers Support for International Use
- Improve user experience in international organizations.
- Supports 12 languages on Application Control client machines.
Device Control (Sanctuary)
Lumension Device Control (Sanctuary)
Call for Price – 0845 065 8243
Enforce USB Security Policies for Removable Media Devices, Data Encryption and Port Protection with Lumension Device Control
Lumension Device Control, the primary component of Lumension Data Protection™ solution enforces organization-wide usage policies for removable devices, removable media, and data (such as read/write, encryption). Using a whitelist / “default deny” approach, administrators can centrally manage your devices and data. Lumension Device Control enables organizations to embrace productivity-enhancing tools while limiting the potential for data leakage and its impact.
How It Works
- 1. Discover – identify all removable devices that are now or have ever been connected to your endpoints through the use of a “learning” mode that allows you to collect information without disrupting business.
- 2. Assess – define rules at both default and machine-specific levels for groups and individual users with regards to device access by class, model and/or specific ID and uniquely identify and authorize specific media. These permissions can be linked to the user and user group information stored in Microsoft Active Directory or Novell eDirectory.
- 3. Implement – enforce device and data usage policies by: file copy limitations (amount per day, time of day) and file type filtering. You can also enforce the encryption of data moved onto removable devices / media and apply permissions to specific and/or groups of endpoints, ports, devices and users (both on- and off-line), including scheduled / temporary access.
- 4. Monitor – continuously monitor the effectiveness of device and data usage policies in real time and identify potential security threats by logging all device connections, recording all policy changes and administrator activities and tracking all file transfers by file name and content type. You can even keep a copy of every file that is transferred to or from a removable device using our patented bi-directional shadowing technology.
- 5. Report – create both standard and customized reports on all device and data activity showing allowed and blocked events, which can be saved into a repository, shared via email, and/or imported into 3rd party applications. Detailed forensic reports and comprehensive auditing capabilities enable you to demonstrate compliance with internal security policies and external government and industry regulations such as SOX, HIPAA or PCI DSS
Features & Benefits
User-Defined and Plug and Play Devices: Improves Network Security
- Provides flexibility needed to handle unique needs & environments.
- Ensures user productivity is not disrupted by applying permissions for Plug & Play devices when detected.
Per-Device Permissions: Delivers Granular Permissions Control
- Provides greater control at lower levels for effective access management.
Uniquely Identify and Authorize Specific Media: Secures Data
- Limits DVD/CD access to your company’s standard discs, to avoid use of unauthorized content and/or encrypts removable media to prevent unauthorized viewing.
Whitelist / “Default Deny”: Secures Data from Data Leakage/Theft
- Eliminates unknown or unwanted devices in your network, reducing the risk of data leakage / data loss.
- Limits uploading of unknown or unwanted files (i.e., malware or other unauthorized files).
Data Copy Restriction: Secures Data from Data Leakage/Theft
- Removes risk of large amounts of data leaving your network.
File Type Filtering: Blocks Malware Attacks and Protects Data
- Reduces risk of sensitive files leaving your network, and unwanted files (i.e., malware or other unauthorized files) entering your network.
Read-Only Access: Secures Data from Data Leakage
- Limits potential leakage paths of sensitive data.
Temporary / Scheduled Access: Enhances Security Policy Enforcement
- Switches access on without having to remember to switch it off again later.
- Provides another method to manage access to sensitive data.
Context-Sensitive Permissions: Increases Endpoint Security
- Provides deeper, finer-grained control over access to endpoints, reducing possible problem areas in all anticipated environments.
Offline Updates: Enhances Security Policy Enforcement
- Permits permission updates no matter the status of the endpoint to ensure uniform security policy enforcement.
Policy Controlled Encryption for Removable Media and CD/DVD: Increases Security Compliance
- Ensures that data cannot be accessed if removable devices or media are lost or stolen.
- Reduces the risk of data leakage / data loss.
Patch and Remediation (formerly PatchLink Update)
Lumension Patch and Remediation
(formerly PatchLink Update)
Call for Price – 0845 065 8243
Quickly Identify and Patch Software Security Vulnerabilities with Lumension Patch and Remediation
Lumension Patch and Remediation provides rapid, accurate and secure patch management, allowing you to proactively manage threats in the most complex environments by automating the collection, analysis and delivery of patches throughout your enterprise. As an essential part of Lumension Vulnerability ManagementTM, Lumension Patch and Remediation significantly decreases the costs involved in securing your organization from worms, trojans, viruses and other malicious threats and allows you to:
- Inventory and manage both physical and virtual machines.
- Reduce corporate risk and optimize IT operations through the timely, proactive elimination of operating system and application vulnerabilities across all systems and servers, including Windows, Unix, Linux and Apple Mac OS.
- Decrease IT costs and improve productivity with a highly automated, subscription-based patch management solution.
- Seamlessly manage and report on Lumension and third party licensed content and prerequisite patches – all from one consolidated console.
- Manage system desktop configuration tasks, such as automating disk defragmentation and disk cleanup tasks, and enforcing policies for account, device control, domain, network, and system policy security settings.
- Improve your security posture through integration with Network Access Control (NAC) solutions to remediate ‘non-compliant’ machines to a compliant state before gaining access to the network
- Demonstrate compliance with security policies and government regulations through continuous patch monitoring and comprehensive reporting.
How it Works
- 1. A comprehensive agent-based scan proactively assesses application, operating system and operational vulnerabilities on corporate endpoints.
- 2. Remediation policies are defined and patches are rapidly deployed using the intelligent patch deployment wizard. Automated deployments are scheduled based upon patch criticalities and defined security policies and can be deployed individually or in phases.
- 3. Lumension’s patented Digital Fingerprinting™ Technology creates a patch fingerprint profile that includes all software, hardware, drivers, and existing and missing patches for each machine. Patch drift is eliminated by ensuring that endpoints get patched and stay patched enabling you to show validation of policy compliance and enforcement.
- 4. A graphical “dash board” and over 20 standard reports document vulnerabilities, patch deployments, patch status, trends and inventory, assisting you to address operational, management and compliance reporting.
Features & Benefits
Comprehensive Endpoint Assessment – Consolidates Visibility and Lower TCO
- Single agent collects security and configuration information to provide consolidated visibility and lower TCO.
Open Architecture – Provides a Consolidated, Single Tool To Meet All Your Patching Needs
- Single tool has extensibility to meet needs of customers as well as flexibility to easily accommodate new software and initiatives as they arise.
- Manage and report on Lumension and third party licensed content and prerequisite patches automatically without complex or manual credentials management.
Agent-Based Architecture – Provides Comprehensive On- and Offline Protection
- Protects laptops, servers, and desktops that are often disconnected from the network and reduces network bandwidth usage.
Directory Services Integration – Saves Time and Cost
- Through the integration with Active Directory there is no need to recreate the logical organization of systems, thereby saving time and delivering lower TCO
Comprehensive Remediation Actions – Enhances Security Posture and Lowers TCO
- Broad vulnerability assessment and remediation database optimizes IT operations and provides better security posture and lower TCO.
Automated Agent Distribution – Saves IT Operations Time and Effort
- Ensure maximum coverage and protection, with minimal time and effort required by IT operations.
Automatic Notifications – Improves Security & Productivity
- Improve security through the timely response to issues.
- Improve administrative productivity through proactive, automated alerts.
Flexible Reporting – Provides Comprehensive Visibility & Ensures Audit Readiness
- Provides insight into the security status of the organization.
- Rapidly respond to internal or regulatory compliance requirements.
Social Us