Features

• Automated configuration visibility, policy setting, and enforcement
• Align security configuration management with best practices from SANS, US National Institute of Standards and Technology (NIST), US National Security Agency (NSA), and Microsoft via subscriptions to prepackaged BigFix-ready remediation policies
• Optional BigFix Fixlet Message library support for Defense Information Systems Agency Security Technical Group (DISA STIG) and Federal Desktop Common Configuration (FDCC) standards
• Includes BigFix Security Policy Manager that automates and enforces security configuration policy conformance along with subscriptions to a growing library of pre-packaged BigFix Fixlet messages covering password protection, information shares, software patch and update status and other issues
• Policy enforcement for off-LAN and off-network endpoints
  Ad-hoc queries and reporting

Benefits

• Pre-packaged policy libraries speed time to implementation
• Customizable content to meet specific and/or changing requirements
• Shorten remediation cycles to hours and minutes from days and weeks
• Pre-empting approach to closing off weaknesses and vulnerabilities before they can be exploited
• Real-time reporting against goals and compliance requirements