News
New ForeScout Extended Module for Rapid7 Nexpose
August 2016 by Marc Jacob
ForeScout
Technologies, Inc., the pioneer in agentless cybersecurity, today announced
the
ForeScout Extended Module for Rapid7
Nexpose, an industry-leading, live vulnerability management solution. The
ForeScout Extended Module allows joint customers to leverage Nexpose to scan
for vulnerabilities and mitigate threats stemming from potentially risky
devices that join the network. Rapid7 is an industry-leading
security data and analytics company.
Vulnerability assessment scans are a critical component for comprehensive
threat protection. However, with workforce mobility and Bring Your Own
Device (BYOD) options, more and more transient devices are being added to
corporate networks, creating an attack surface that is increasingly harder
to monitor and protect.
When a transient device is offline during a scheduled scan, most traditional
methods of detection will fail to identify it. This oversight allows the
device to connect or reconnect to the network unseen, after potentially
being exposed to threats. The ForeScout Extended Module for Rapid7 Nexpose
allows customers to automatically block devices from joining their network
until they reach an acceptable risk level. With this combination of Nexpose
and CounterACT(r), customers are able to reduce the attack surface on their
networks while remediation is happening.
ForeScout CounterACT is designed to enforce endpoint compliance each time a
device connects to the network, providing continuous compliance within and
between the scan windows. Through Rapid7 Insight Agents or Adaptive
Security, Nexpose provides live monitoring, visibility, remediation
prioritisation and automatic threat mitigation for new devices or
vulnerabilities on the network.
The new ForeScout Extended Module for Rapid7 Nexpose provides the following
key benefits to customers:
Immediate Information Sharing: CounterACT notifies Nexpose when
devices join the network or change configuration so Nexpose can immediately
scan for vulnerabilities.
Policy Enforcement: Enforces policies across the network - even for
transient devices that were initially missed by scheduled vulnerability
assessment scans - by delivering a detailed report on endpoint protection
status.
Automation: Communicates with Nexpose to provide workflow automation
such as on-connect assessment and automated identification of security
threats. The ForeScout Extended Module for Rapid7 Nexpose is designed to
automatically recommend and help prioritise policy-based remediation actions
when devices join the network.
This
collaboration with ForeScout helps us further deliver excellent security
solutions to our customers with visibility into devices as they connect to
the network, minimising risk and helping them make informed decisions.
