Vulnerability and Patch Management

For organizations that prefer to manage security operations in-house, GWC offers vulnerability management solutions that conduct automated and continuous scanning to identify potentially damaging vulnerabilities in your network infrastructure.

Vulnerability management is an on-going process that protects your valuable data, customer information, critical network assets and intellectual property. Our solutions are designed to identify vulnerabilities quickly and accurately, as well as provide remediation steps and blocking techniques.

GWC vulnerability management solutions track and communicate risk reduction efforts from initial identification through remediation. Vulnerability management is a key component of an effective information security strategy, which provides comprehensive, pre-emptive protection against threats to your enterprise security.

The increasing need for vulnerability management and malware protection has highlighted the need for a strong focus on patch management.

“Unfortunately, software vulnerabilities are such that after a patch is installed today, a new vulnerability must be addressed tomorrow.” (Microsoft Patterns and Practices)

A patch management process must include:

• Automated detection of missing security patches;
• Assessment of the risk(s) involved if a patch has not been installed;
• Upload of the relevant patch if a vulnerability is not already being addressed;
• Change management-vital to every stage of the patch management process;
• Testing patches to validate their impact on your production configuration;
• Roll out patches;
• Audit and assessment, and,
• Maintenance.

Some of the major benefits, to you, of implementing GWC solution for Patch Management are real time visibility and control-capable of managing hundreds of thousands computers; fixed or mobile, located anywhere in the world, on public or private networks, simultaneously and in real-time, without the need for servers or management resources; Benefits also include scalability-actions executed locally on each endpoint, in parallel, across the entire network, no server bottlenecks, and support for multiple platform environments and topologies-desktops, laptops, servers; Linux, Macintosh, Windows, UNIX.