Critical Watch
Loading

Overview

Features

FusionVM Enterprise

FusionVM SaaS

FusionVM PCI

FusionVM MSSP

FusionVM Consultant

 

Try FusionVM Today!

Click here to request a free 15-day trial of FusionVM


CVE Compliant

Asset Identification

Automatically identifies and profiles assets including devices, ports, operating systems, services, applications, versions and vendors (layers3-7)

  • Evaluates both active and inactive IP addresses within a given range
  • Detects wireless access points
  • Catalogs network devices such as firewalls, IDS/IPS, routers, switches, hubs as well as servers, printers and desktops
  • Identifies standard and non standard open ports
  • Identifies known and unknown services

 


Vulnerability Assessment

Enables safe and scalable testing of enterprise networks on a repeatable basis.

  • Analyzes enterprise networks from both external and internal vantage points
  • Evaluates known vulnerabilities from OS to databases to devices to applications
  • Discovers and identifies missing patches for Windows, Unix and Linux through optional authenticated scanning
  • Manages bandwidth utilization through bandwidth setting at the scan job levels
  • Enables the flexibility for recurring assessments to be scheduled according to operational and business objectives
  • Allows users to set acceptable time windows to run assessments by using Operational Windows
  • Utilizes CVE classifications

 

Early Warning Intelligence

Delivers same day alert feeds on newly emerging vulnerabilities in between scheduled scans to provide proactive risk management.

  • Alerts are correlated against the most recent asset profile and delivered to the responsible administrator
  • Alerts are sent via encrypted email and are also available via portal report views
  • Alerts detail affected machines, severity, likelihood of exploit, skill level needed to exploit, and links to references, fix instructions or available work around

 

Prioritization

Enterprises can easily organize their mitigation efforts around what is critical to their business.

  • A risk algorithm calculates a weighted average score for each assessment job that results in a color coded system to easily target trouble spots
  • Vulnerabilities are classified by high, medium, low, and warning severity categories
  • CEM can be configured to group assets by business priority structures
  • Prioritized reports have drill down capability to access remediation details quickly
  • Scan frequency can vary based on asset criticality
  • Remediation tickets can be created based on most critical exposures or on most critical devices
  • Filters Manager functionality provides the ability to suppress acceptable, false positive or otherwise non-mitigated vulnerabilities from the ongoing reporting. This reduces the effort of re-analyzing known non-issues and enables teams to focus on mitigating business critical issues.
  • The Filters Manager functionality logs the original author of the filter, the reason for the filter, filtered date, expiration date and complete history of any edits to the filter.



Remediation Management

Provides a workflow platform for assigning, tracking and validating remediation tasks across large enterprises with multiple operational teams participating in the process.

  • Managers can create tickets (set severity, due dates, comments) and assign them to individual users or groups
  • Assignments can be set up using various aggregate grouping types (by exposure, by IP, by Job)
  • Managers can view all current assignments along with status, severity and past due flags
  • Resolved tab provides a summarized list of resolved tickets listed by user or group and searchable by date.
  • Technicians can view “My Assignments” to access assigned tickets
  • Email ticket notifications alert users of new assignment as well as provide a synopsis of the ticket (issue and severity)
  • Due dates enable enforcement of policy on acceptable remediation time windows
  • Managers and Technicians can view the complete history of a particular ticket
  • Easy access via web links to available manufacturer patches or available suggested workarounds as well as original advisories when available.
  • Detailed solution steps written in simple, real world language to enable action by IT personnel

 

 

Reporting

FusionVM delivers a powerful and unique reporting capability. Leveraging the CEM, it delivers new dimensions of security visibility based on an organization’s own unique business environment and risk management requirements. Individual asset owners receive report information personalized for them based on their role and the assets for which they are responsible, while management and security teams can rollup aggregate information and also drill down from any vantage point on the CEM tree.

  • Reports are dynamically mapped against the user defined CEM tree structure
  • From any point on the CEM tree structure, a user has access to the full compliment of reports in a flexible drill down/roll up format
  • Trend analysis establishes baselines, then enables performance measurement over time
  • Exporting to MS Excel and PDF are supported
  • Report types include:
    • Summary graphic charts and dynamic trend calculator
    • By Risk Report – Groups vulnerabilities and missing patches by risk with drill down capability to see detailed fix instructions, useful resources and affected devices
    • By Host Report – Groups vulnerabilities and missing patches by host with drill down capability to see detailed fix instructions, useful resources and affected devices
    • Profiles – Detailed enumeration of asset configuration. Catalogues available services, open ports, applications installed, OS, machine name, and versioning information
    • Open Services – Includes a Known Services report that groups assets by service and an Unknown Services report that highlights suspicious services on suspicious ports
    • Early Warning Alerts – Sorted by most recent (and also grouped by High/Medium/Low/Warning), a listing of all the newly emerging vulnerabilities that are mapped to Customer’s specific network assets is displayed Assignments can be set up using various aggregate grouping types (by exposure, by IP, by Job)
    • Variance – Captures remediation progress from one scan to the next. Enumerates new, resolved and unresolved vulnerabilities, all from the previous scan date

 

Research

The Research tab provides a searchable Exposures Library that enables users to view the current vulnerability checks in the FusionVM toolkit. Also included are aggregated and filtered security resources, advisories, message boards and news links.

4201 Spring Valley Rd., Ste. 1400, Dallas, TX 75244 | 1-866-525-8680 Toll-free

©2001-2008 Achilles Guard, Inc. dba Critical Watch. All Rights Reserved

Products | Solutions | Support | Partners | Company | News & Events

Site Map | Privacy