 |
Vanguard Configuration Manager™: Automated Configuration Scanner for
DISA STIG
Vanguard Configuration
Manager™ provides the fastest, most cost-effective and accurate
method to verify that Intrusion Detection security configuration controls are
in compliance with the Defense Information Systems Agency (DISA)
Security Technical Implementation Guides (STIG) developed for the
Department of Defense (DoD). Organizations using Vanguard
Configuration Manager can perform Intrusion Detection DISA STIG checks and
report findings in just a few hours instead of the hundreds or
thousands of hours it may take using standard methods.
Under the Federal Information Security Management Act (FISMA) and
National Institute of Standards and Technologies (NIST) standards
and guidelines, all U.S. government agencies and contractors with
IBM z/OS mainframes systems should test their security configuration
controls to assess their accordance with the DISA STIG.
Testing a Mainframe system for DISA STIG compliance can be an
extremely difficult and time-consuming process. With Vanguard
Configuration Manager, it’s almost easy.
Vanguard Configuration Manager has efficient automation capabilities
and built-in comprehensive intelligence about the Mainframe DISA
STIG checks. Additionally, it enables organizations to easily
evolve from continuous monitoring to periodic compliance reporting.
Highlights
|
■ |
Dramatically reduces costs of
DISA STIG configuration testing and reporting. |
|
■ |
Significantly enhances
Mainframe security. |
|
■ |
Provides built-in intelligence
about Intrusion Detection DISA STIG details. |
|
■ |
Automates testing on more than
300 Mainframe DISA STIG checks. |
|
■ |
Produces accurate DISA STIG
compliance reports in minutes. |
|
■ |
Enables migration to
continuous monitoring. |
|
■ |
Easy to deploy and use. |
|
■ |
Reduces the potential human
error associated with the DISA STIG reporting process. |
|
■ |
Developed by security experts
in the United States. |
|
■ |
Current release supports z/OS
RACF, while upcoming releases will also support z/OS ACF2
and z/OS TSS. |
FISMA Requirements for Information & Information Resources
|
■ |
OMB FY 2010 Reporting
Instructions for the Federal Act and Agency Privacy
Management: NIST Standards and Guidelines: “11. Is use of
National Institute of Standards and Technology (NIST)
publications required?”
"Yes. For non-national security programs and information
systems, agencies must follow NIST standards and guidelines.
For legacy information systems, agencies are expected to be
in compliance with NIST standards and guidelines within one
year of the publication date unless otherwise directed by
OMB. The one year compliance date for revisions to
NIST publications applies only to the new and/or updated
material in the publications. For information systems
under development or for legacy systems undergoing
significant changes, agencies are expected to be in
compliance with the NIST publications immediately upon
deployment of the information system". Please
refer to
OMB M-10-15. |
|
■ |
"Technical Security.
Agencies should assure that each system appropriately uses
effective security products and techniques, consistent with
standards and guidance from NIST". Please refer to
OMB Circular A-130, Appendix III. |
|
■ |
The NIST standard and guidance
on security configuration control checklists: "Federal
agencies are required to use appropriate security
configuration checklists from the National Checklist Program
when available". Please refer to
NIST SP 800-70, pages ES-1
and ES-2. |
|
■ |
Vanguard Configuration Manager
scans your Intrusion Detection system and reports on configuration
control compliance with the DISA-STIGs. The DISA-STIGs
for Mainframes are the checklists for mainframes in the
National Checklist Program. Please refer to the
National Vulnerability Database
National Checklist Program. |
back to top
The
Only Automated Baseline Configuration Scanner for Mainframe DISA STIGs! |
|
