Cygilant debuts initial integrated subscription service for automated and auditable vulnerability and patch management



Cygilant, provider of hybrid security as a service solutions, launched on Tuesday SOCVue Vulnerability and Patch Management (VPM), a new subscription service that unifies vulnerability and patch management into a single offering. SOCVue VPM automates the process of detection, prioritization, and patching of vulnerabilities with an auditable change management workflow to continually reduce the attack surface and improve protection against cyberattacks in a cost-effective manner.

Cygilant VPM service reduces attack surface by proactively identifying vulnerabilities and the patches that fix them across IT environment, prioritizing them based on business impact and risk, and providing remediation guidance and assistance — saving users valuable time and reducing operational costs.

The service automatically scans the systems and applications for missing patches, including patches that fix software vulnerabilities, and provides a controlled workflow to review, approve, schedule, apply and validate patches. The service includes Cygilant’s global security services team who act as an extension to lean IT team and help manage Vulnerability and Patch Management process.

Cygilant’s SOCVue VPM service streamlines the entire process with continuous scanning of IT infrastructure to identify vulnerabilities with support for Qualys, Rapid7, and Tenable vulnerability management technologies; deliver analysis and prioritization of vulnerabilities based on business risk, exploitability, and patch availability by Cygilant’s SOC team; a single pane of glass that provides prioritized vulnerabilities and available patches with the ability to deploy patches with built-in auditable change management workflow to review, approve, schedule, deploy, and validate patches to fix vulnerabilities.

The service also re-scans to confirm vulnerabilities are fixed; delivers 24×7 availability of Cygilant’s global SOC security analysts to assist customers with detection, prioritization, and deployment of appropriate patches including Windows, Linux, Mac, and third-party applications such as Adobe and Java; and offers detailed reporting on a daily/weekly/monthly basis to meet regulatory compliance mandates such as FFIEC, PCI-DSS, HIPAA and NIST.

A new report from the Online Trust Alliance (OTA) recommends regular patching and paying close attention to vulnerability reports as a best practice, while neglecting both is a known cause of breaches, noting that both should receive special attention in light of the Equifax breach. The report found that 93 percent of breaches that occurred in 2017 were avoidable, with 52 percent attributed to hacking.

Likewise, WannaCry and Petya malware also spread quickly due to inadequately patched systems. Verizon’s 2017 DBIR analysis showed that only 61 percent of organizations finish the patching process and patches not installed after 12 weeks tend to go unpatched for good.

SOCVue VPM answers the critical question of, “am I vulnerable” while providing an elegant mechanism to fix vulnerabilities and reduce or prevent being compromised. SOCVue VPM eliminates information silos, improves collaboration among cross functional teams, and increases accountability, while reducing inefficiencies that impact most organizations today. IT and security teams can leverage SOCVue VPM to scan their IT environment to identify vulnerabilities across operating systems, network devices, and applications, and prioritize vulnerabilities based on business risk and deploy available patches to plug vulnerabilities — all from a single pane of glass. The built-in auditable change management process keeps a record of, “who-what-when-where” of all deployed patches.

Security-conscious and compliance-mandated organizations have made significant investments in vulnerability technologies. While these technologies do an excellent job of detecting large number of vulnerabilities, IT teams struggle with prioritizing vulnerabilities and are forced to use a separate patch management tool to patch these vulnerabilities.

The traditional processes of managing disparate vulnerability and patch management solutions is time consuming, prone to error, and costly. As a result, it is not uncommon for IT teams to miss patching critical vulnerabilities, as was the case in the 2017 Equifax breach. Cyber criminals rely on these broken processes to exploit system vulnerabilities, unpatched systems, and applications.

“SOCVue VPM is a disruptive vulnerability and patch management solution that saves customers significant resources and time while increasing their security posture,” said Vijay Basani, Chairman and CEO, Cygilant. “With our global SOC security analysts working as an extension of customers’ IT teams, we become a force multiplier in continuous detection, prioritization, and patching of vulnerabilities to reduce the attack surface and mitigate risks to protect IP, customer data, and financial assets.”

Leave a Reply

WWPI – Covering the best in IT since 1980