eEye Digital Security Extends Leadership Position in Federal Government Security Standards for SCAP, FDCC, and DISA STIGS

eEye Digital Security, the largest provider of vulnerability management and compliance solutions to the Federal government, today announced that it will introduce more than 35 new benchmark tests for the Security Content Automation Protocol (SCAP). SCAP measures systems to find vulnerabilities and evaluate their possible impact. These tests meet the requirements of Security Technical Implementation Guides (STIGS) for the Department of Defense’s (DoD) Defense Information Systems Agency (DISA), and for the Federal Desktop Core Configuration (FDCC) standard.

"eEye has written the book when it comes to vulnerability management and compliance solutions that meet government agency regulations and security standards," said Marc Maiffret, eEye CTO and co-founder. "These new capabilities will be implemented in eEye's security management console, Retina CS, a centralized security compliance and reporting platform written from the ground up to meet the needs of government customers by providing stronger support for ever-changing SCAP standards.”

Agencies within the Federal government, ranging from critical national defense to civilian organizations, have benefited from the security and compliance advantages eEye has provided for over a decade. Among the leading-edge vulnerability management solutions that have helped agencies to ensure security and compliance are:

• Retina.GOV: Retina.GOV provides unified vulnerability management and compliance with continuous monitoring of systems to adhere to government-related compliance and assessment standards.

• Retina Network Security Scanner: This flagship component of Retina.GOV is SCAP certified as an FDCC Scanner, Authenticated Configuration Scanner, Authenticated Vulnerability and Patch Scanner, and Unauthenticated Vulnerability Scanner.

• DISA STIG auditing: For more than three years, eEye has provided STIG auditing capabilities for Windows 2000, Windows 2003 Windows XP Professional and additional Microsoft systems.

• FDCC auditing: For over a year, eEye has provided FDCC auditing capabilities for Windows XP and Windows Vista.

• Information Assurance Vulnerability Alert (IAVA): For more than six years, eEye has been the leader in providing complete auditing capabilities, offering more comprehensive IAVA audits than any other vulnerability management provider.

New Templates Proactively Support Government Standards

The 35-plus new SCAP benchmarks will extend eEye's leadership in government compliance and reporting for DoD STIG, FDCC, Microsoft, National Institute of Science and Technology (NIST), and more. The simple functionality of the SCAP templates, together with standards support, will empower government organizations to leverage industry knowledge and keep up-to-date with industry best practices. In addition, eEye will proactively support new standards such as the Asset Reporting Format (ARF) and Asset Summary Results (ASR) as they are released.
 

Additional Government-Specific eEye Resources Include:

• The eEye Government website: http://www.eeye.com/Gov

• The eEye Retina.GOV solution demonstration: http://www.eeye.com/Solutions/Industry/Government/Solution-Demonstration

Previous Government Solutions Announcements Include:

• Technical Communities and eEye Digital Security Sign Exclusive Government Services Partnership

• Retina Wins SCAP Certification from National Institute of Standards & Technology

• Retina meets NIST standards for automated vulnerability management, measurement and policy compliance

• U.S. Department of Defense Chooses eEye Digital Security for Vulnerability Management Solution

About eEye Digital Security

Since 1998, eEye Digital Security has made vulnerability and compliance management simpler and more efficient by providing the only unified solution that integrates assessment, mitigation, protection, and reporting into a complete offering with optional add-on modules for configuration compliance, regulatory reporting, and integrated patch management. eEye’s world-renowned research and development team is consistently the first to uncover critical vulnerabilities and build new protections into our solutions to prevent their exploit. Thousands of mid-to-large-size private-sector and government organizations, including the largest vulnerability management installations in the world, rely on eEye to protect against the latest known and zero-day vulnerabilities.

Follow eEye Digital Security
Twitter: http://twitter.com/eEye
Blog: http://blog.eeye.com
LinkedIn: http://www.linkedin.com/companies/eEye-digital-security
Facebook: http://www.facebook.com/eeyedigitalsecurity