Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.

Introducing Puppet Remediate™

106 vues

Publié le

Get a firsthand look at our new product in a webinar on Tuesday, 17 September.
Many IT organizations tasked with securing infrastructure find that one of their biggest challenges is the vulnerability management process. This process is often manual and inefficient, leaving systems exposed to breaches and attacks.

Our new product, Puppet Remediate, addresses common pain points in the vulnerability management workflow to better protect your infrastructure and reduce manual work. With Remediate, you can:

Eliminate data handoffs between teams. Puppet Remediate integrates with the three major vulnerability scanners — Tenable, Qualys and Rapid7 — providing a single source of truth for IT Ops;
Easily assess the most critical threats. The dashboard shows all vulnerabilities prioritized by relative risk, so you know what to address first;
Agentless remediation. Run a task to remediate vulnerabilities directly from the dashboard. You can upload your own scripts, or make use of existing modules in the Puppet Forge.

Publié dans : Technologie
  • Soyez le premier à commenter

  • Soyez le premier à aimer ceci

Introducing Puppet Remediate™

  1. 1. Puppet Remediate Helps organizations mitigate security risks SEPTEMBER 2019
  2. 2. Puppet Introductions Alberta Bosco Senior Product Marketing Manager Jonny Stewart Senior Product Manager
  3. 3. Agenda Vulnerability management - What is it? Who does what? Vulnerability remediation: workflow, pain points and organizational challenges Puppet vision: IT Ops can remediate faster with automation Puppet Remediate demo Puppet Remediate key differentiators Questions
  4. 4. 4 Is vulnerability management and patching the same thing? They are related but they are not the same thing. Patching helps preventing vulnerabilities but is not enough! How do I identify vulnerabilities left in the system? I can use vulnerability scanners, like: Qualys, Rapid7 and Tenable. Vulnerability management - What is it? Vulnerability management is the practice of identifying, classifying, prioritizing, remediating, and mitigating, software vulnerabilities.
  5. 5. 5 Vulnerability management - Who does what? INFOSEC TEAM Find vulnerabilities IT OPS TEAM Remediate vulnerabilities Splitting work between teams is called SEGREGATION OF DUTIES
  6. 6. Vulnerability management process Security Team IT Operations Find Send/Receive Filter Prioritize Fix Report Find assets and their vulnerabilities Receive spreadsheet of scanner data via email Report on progress Try to find what’s important out of 1000s Manually decide what to fix first Make changes manually
  7. 7. 1 IT Ops wastes time confirming whether data is current. 2 Don’t know what’s important to fix out of thousands. 3 Takes days/weeks to prioritize critical vulnerabilities. 4 Takes too long. No standard approach to fixing. 5 Completely manual. No reliable way to show what’s fixed. Implications Data breaches/loss of share & brand value Losing people due to lack of DevSecOps Inability to fix vulnerabilities fast enough Typical problems with managing vulnerabilities Security Team IT Operations Find Send/Receive Filter Prioritize Fix Report Find assets and their vulnerabilities Receive spreadsheet of scanner data via email Report on progress Try to find what’s important out of 1000s Manually decide what to fix first Make changes manually 2 3 4 51
  8. 8. 8 143 million records stolen in 2017 including Social Security Numbers. Impact irreversible. Equifax shares fell 6% after announcement. Cause: missed communications and reliance on manual processes.
  9. 9. Puppet Remediate helps organizations mitigate their security risks. 9
  10. 10. Security Team IT Operations Find Send/Receive Filter Prioritize Fix Report Find assets and their vulnerabilities Automatic, secure delivery of scanner data in real time Remediation success confirmed on next scan Most vulnerable hosts; filter by CVE Risk-based vulnerability prioritization Recommended solutions; agentless remediation Customers such as a global retailer and a U.S. Federal agency expect to: ● Reduce the time to fix vulnerabilities from weeks or days down to less than a day. ● Reduce the number vulnerabilities in their systems. ● Get through audits faster and with less effort. Puppet Remediate + scanner integrations accelerate the vulnerability remediation workflow
  11. 11. Demo
  12. 12. 17 Key differentiators ● Community-based content ● Agentless remediation ● Infrastructure discovery and prioritization ● Shared vulnerability data in real time
  13. 13. Questions?
  14. 14. Thank you Request a demo on puppet.com/products/puppet-remediate

×