SolarWinds Automates Network Vulnerability Detection and Security Policy Enforcement
June 2015 by Marc Jacob
SolarWinds announced enhancements to SolarWinds(R) Network Configuration Manager (NCM), its network device configuration and change management product for Cisco(R), Juniper(R), HP(R), Dell(R), and Brocade routers and switches and any other device with a command line interface. The latest version makes it easier to demonstrate security compliance by automatically performing vulnerability scanning on Cisco Adaptive Security Appliance (ASA)- and Internetwork Operating System (IOS(R))-based devices using Common Vulnerabilities and Exposures (CVE) published by the National Vulnerability Database (NVD). Additionally, SolarWinds NCM now provides automated remediation options and National Institute of Standards and Technology (NIST(R)) Federal Information Security Management Act (FISMA) and Defense Information Systems Agency (DISA(R)) Security Technical Implementation Guide (STIG) compliance reports out-of-the-box.
Cisco Device Vulnerability Scanning
By automatically receiving updated security alerts from the NVD, SolarWinds NCM now helps identify risks to network reliability and security by detecting potential vulnerabilities in Cisco ASA- and IOS-based devices. Using integrated access to the CVE system published in SCAP format, a match between a vulnerability and a device will trigger an alert from SolarWinds NCM, which can be followed up with an interactive report that documents remediation steps.
Automatic Remediation Actions
If vulnerabilities are found, SolarWinds NCM will provide an alert, compile a report on violations by control and device, and now provide automatic remediation actions. By creating reusable remediation scripts that are set to run automatically whenever specific violations are detected, SolarWinds NCM provides reassurance that vulnerabilities are fixed, network devices are secure and compliance is being enforced.
Additional Out-of-the-box Compliance Reporting
SolarWinds NCM automatically analyzes router and switch configurations for compliance with NIST FISMA and DISA STIGs and now includes templates for reporting on these compliance standards. Additionally, SolarWinds NCM will continue to provide out-of-the-box templates for the Payment Card Industry Data Security Standards (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA) and other standards. All reports can be customized to meet the requirements specific IT environments or additional compliance regulations.
Pricing and Availability
SolarWinds Network Configuration Manager pricing starts at $2,845 USD- and includes the first year of maintenance.
– Price as of May 19, 2015. Pricing may vary based upon the jurisdiction and applicable currency. Please contact a local SolarWinds sales representative to find pricing specific for your jurisdiction.