Back to Home Back to Home
About Critical Watch

Critical Watch is a leading provider of security risk management solutions that enable a comprehensive business process for integrating vulnerability management and policy compliance across the enterprise. In addition to its FusionVM suite of products and services, Critical Watch provides PCI Compliance services as a certified vendor. Critical Watch clients are Global 2000 enterprises across verticals such as healthcare, financial services, government, e-commerce and manufacturing. FusionVM empowers organizations to:
  • Efficiently and effectively manage business critical risks across the enterprise
  • Establish better visibility, measurability and control over their security
  • Validate regulatory and policy compliance
Visit Critical Watch on the Web: www.CriticalWatch.com


Solution Overview: FusionVM - Security, Risk and Compliance Management

FusionVM from Critical Watch enables organizations to reduce risk and sustain compliance by automating Vulnerability Management and Security Configuration Policy Compliance with a globally scalable, easily deployable solution.


Vulnerability Management

FusionVM automates this key risk and compliance process in a way that is uniquely optimized for your business needs and regulatory requirements.

Discover and Classify Critical Assets - Automatically discovers and profiles assets including devices, ports, operating systems, services, applications, versions and vendors.

Determine Risks on Key Assets - As an agentless solution, FusionVM enable safe, scalable and thorough testing of enterprise networks on a repeatable basis, through both zero-privileged and credentialed scanning. In addition to traditional broad based network assessment coverage, FusionVM also addresses web application and database vulnerabilities in a single platform.

Track and Audit Exceptions - FusionVM enables the ability to embed your unique business risk requirements for optimizing mitigation efforts and report effectiveness.

Manage Remediation Workflow - Provides a workflow platform for assigning, tracking and validating remediation tasks across large enterprises with multiple operational teams participating in the process.

Prevent Threats with Continual Alert Feeds - Delivers same day alert feeds on newly emerging vulnerabilities as applicable. These alerts are driven passively off of the current asset baseline, and occur automatically without requiring an active scan to provide proactive risk management over an above scheduled scanning.

Administer Feature and Reporting Access with Enterprise Permissions - The CEM defines the process administration layer that defines how the process is prioritized and managed across a distributed set of users requiring varying levels of access and report visibility.

View Metrics with Flexible Reporting - FusionVM delivers a powerful and unique reporting capability. Leveraging the CEM, it delivers new dimensions of security visibility based on an organization’s own unique business environment and risk management requirements. Individual asset owners receive report information personalized for them based on their role and the assets for which they are responsible, while management and security teams can rollup aggregate information and also drill down from any vantage point on the CEM tree.


Security Configuration Policy Compliance

Agentless configuration auditing enables a closed loop process for setting vulnerability and configuration policies based on business and regulatory requirements and validating ongoing compliance.

Vulnerability and Risk Policy
  • Apply policies to an asset or groups of assets
  • Enforce and track policies associated with age of vulnerabilities, scan frequency, risk scores and remediation status
  • Measure risk on key compliance-related asset groups through the Risk Scoring component
Security Configuration Policy
  • Credentialed discovery validates optimal secure configurations
  • Policy checks insure compliance with industry standards such as CIS Windows Benchmarks
  • Policy categories address Service Packs, Major Auditing and Account Policies, Minor Auditing Policies, Event Log Settings, Major Security Settings, Available Services, User Rights, Minor Account Policies and Minor Security Settings
Compliance Dashboard
  • Provides a global view into overall compliance status
  • Asset-specific and policy-specific views to quickly pinpoint and mitigate key violations
  • Auditable reporting for compliance on key asset groups relating to Sarbanes-Oxley, HIPAA, GLBA, PCI, FISMA, and other standards
  • View Compliant and Non-Compliant Dashboard for most compliant or non-compliant assets, operating systems or policies
  • View compliance or non-compliance by custom asset tag views
  • Compare compliance status across assets, operating systems or policies
  • Reporting provides visibility to disallowed applications and services
  • Flexible permissions give view to specific assets for compliance dashboard access only
Asset Management

FusionVM facilitates an effective understanding of your enterprise environment with automated discovery, flexible asset naming and detailed tracking.
  • Dedicated asset management database for organizing, editing and tagging assets
  • Detailed asset tagging capability to apply user-specific labels for assets created in FusionVM
  • Asset tags include standard options as well as ability to create custom tags
  • Search asset database with Asset Management permissions
  • Rogue device tracking to detect unknown hosts
  • Track asset ownership in static or dynamic environments


Deployment Options

 SaaS: Software-as-a-Service

No hardware or software is required for external scanning. For internal scanning, a VM Server can be deployed to the internal network and remotely managed from the Critical Watch Secure Center.


Product: Appliances

All-In-One Manager: Includes FusionVM Management Software, Vulnerability, Asset, and Reporting databases, Policy Library and Scanning Engine. Delivers end-to-end Security, Risk and Compliance Management in a single appliance.

VM Server: Includes scanning engine and can be managed by the All-In-One Manager to add distributed scanning capability. VM server can be delivered as a physical appliance or a virtual appliance using VMWare.




TippingPoint - IPS Integration Module

 This leading edge solution goes beyond basic threat-to-vulnerability correlation by creating a feedback loop between the TippingPoint IPS and FusionVM Vulnerability Management tools. Holistic Threat and Compliance Management from Critical Watch and TippingPoint optimizes the configuration of IPS filters and policies based on the actual vulnerability climate of the enterprise and streamlines vulnerability management efforts through the knowledge of available compensating mitigation through IPS filters. A mapping of IPS filters to the FusionVM vulnerability database unifies your IPS and Vulnerability Management functions into a single process providing clear visibility to the optimal mitigation strategy.

FusionVM Holistic Threat & Compliance Management

Unify IPS and Vulnerability Management to improve security and sustain compliance while reducing costs of operation

Operationalize a process for linking IPS and Vulnerability Management
  • Tune IPS filters based upon your organization’s vulnerability climate
  • Demonstrate process capability for regulatory compliance
  • Sustain continuous audit defense
  • Minimize administrative resources while maximizing productivity
  • Improve security effectiveness with multi-layer mitigation capability
FusionVM integrates with the TippingPoint Security Management System (SMS) enabling you to
  • Identify vulnerabilities currently mitigated at IPS level
  • Determine vulnerabilities with available, but not applied IPS mitigation
  • View IPS filters with the most impact on exposed risk
  • Pinpoint vulnerabilities requiring mitigation at patch or configuration level
Architecture

The FusionVM database is continually updated with the IPS filter-to-vulnerability mapping so vulnerability descriptions provide current remediation instructions as well as the corresponding IPS Filter(s). FusionVM is configured to connect to the TippingPoint Security Management System (SMS) to determine which IPS policies are applied across each IPS segment. This information intersects to form various custom reports that enable you to mitigate at the network or device level.


back to top