Ce diaporama a bien été signalé.
Nous utilisons votre profil LinkedIn et vos données d’activité pour vous proposer des publicités personnalisées et pertinentes. Vous pouvez changer vos préférences de publicités à tout moment.

Application Rationalization - Reducing the Risk from Unpatched and Unsupported Software

Today enterprises must be vigilant about the software they install in their environments. But when asset management policies are not aligned with business needs, the resulting misalignment leaves organizations open to security breaches and significant losses from known software vulnerabilities. A continual review of software assets to look for opportunities for consolidation and retirement (application rationalization) can reduce risk from software vulnerabilities as well as reduce costs.

  • Identifiez-vous pour voir les commentaires

Application Rationalization - Reducing the Risk from Unpatched and Unsupported Software

  1. 1. Application Rationalization: Reducing risk from unpatched and unsupported software
  2. 2. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential2 Todays Presenters Timothy Davis Senior Product Marketing Manager, Flexera Software Tdavis@Flexerasoftware.com @TimothyToday MPereira@flexerasoftware.com Marcelo Pereira Software Vulnerability Product Marketing Manager Flexera Software
  3. 3. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential3 The Enterprise Software Landscape Change in the last 10 years: 20x increase in the number of software vendors 10x the number of software titles companies buy 12x the number of internal “buyers” inside companies 4x increase in spending on software $ Source: GigaOm.com, The Future of Enterprise Software is Abundance, by Auren Hoffman
  4. 4. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential4 The Enterprise Software Landscape • 34% of orgs still have XP and Windows Server 2003 • 20% have Internet Explorer 8, 9, or 10 $ Click Here - To watch this webinar on demand
  5. 5. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential5 45 47 48 49 50 51 59 60 71 0 10 20 30 40 50 60 70 80 System management Improving the availability and performance Achieving seamless user interaction across devices Collaboration strategies Project management Ensuring IT personnel are effectively trained Improving applications to better match the business Lowering cost of IT infrustructure Improving security for IT systems Top Technological Priorities Source: Tech Pro Research
  6. 6. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential6 The Attack Vector You Should Never Ignore “Apparently, hackers really do still party like it’s 1999. The tally of really old CVEs suggests that any vulnerability management program should include broad coverage of the “oldies but goodies” - Verizon Intelligence and visibility of vulnerabilities are crucial of the exploited vulnerabilities were compromised more than a year after the Common Vulnerability & Exposure (CVE) was published Source: “ 2015 Data Breach Investigation Report ” Verizon http://www.verizonenterprise.com/DBIR/2015/
  7. 7. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential7 Time to Patch Source: “Secunia Vulnerability Review 2015.” https://secunia.com/vulnerability-review/
  8. 8. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential8 Vulnerabilities in All Products in 2014: A 55% increase in vulnerabilities - 5 year trend 15,435 vulnerabilities were discovered in 3,870vulnerable products Source: “Secunia Vulnerability Review 2015.” https://secunia.com/vulnerability-review/
  9. 9. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential9 Advisories 2016 476 Secunia Research has written Advisories in February 2016 939 Secunia Research has written Advisories in 2016 up to 29 February
  10. 10. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential10 Digesting the vulnerability data for February 2016 No advisories for Extremely Critical vulnerabilities written in February!
  11. 11. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential11 Digesting the vulnerability data for February 2016 • Solution status for the 79 “Highly Critical” Advisories
  12. 12. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential12 Application Rationalization: Reducing the Attack Surface
  13. 13. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential13 Rationalization Benefits  Reduces Infrastructure & support costs  Mitigates risk and reduce the attack surface  Advances dialogue with the business
  14. 14. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential14 Microsoft Configuration Manager Inventory: Too Much Data - Inconsistent naming - Minor versions - Drivers
  15. 15. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential15 Actionable Information  Familiar Names  Simplified Versions  Filtered content  Categories  Classifications  Compatibility
  16. 16. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential16 Application Recognition Service Microsoft System Center Configuration Manager AdminStudio Suite
  17. 17. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential17  Identify EOL Keep up with new versions  Know which are being used Determine Suitability
  18. 18. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential18  Identify EOL Keep up with new versions  Know which are being used Determine Suitability  Start workflows
  19. 19. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential19 Unified Application Readiness Process Deliver Consistent and Reliable Applications for All Devices Deploy Fix & Package Plan Assess Compatibility Rationalize Identify Identify deployed, used, and vulnerable applications Eliminate unused, duplicate, and risky applications Determine suitability and security patches for target platform Scope, prioritize, and plan delivery Fix, package and test for target environments Deploy to management systems and enterprise app store ProcessManagementandReporting
  20. 20. © 2016 Flexera Software LLC. All rights reserved. | Company Confidential20 Next Steps • Visit www.FlexeraSoftware.com for these downloads • Contact a Flexera representative or business partner to learn more – North America: 800-809-5659 – Europe, Middle East & Africa: +44 (0) 870 873 6300 – Asia-Pacific: +61 3 9895 2000 The latest Vulnerability Review Preparing for Windows 10 and beyond White Paper Click Here > To watch this webinar on demand

×