eEye Digital Security
  • Login to the eEye Business Client Portal
  • Shop for eEye Products
  • Read the eEye Blog
  • Subscribe to eEye RSS Feeds
  • Follow eEye on Twitter
  • Follow eEye of Facebook
Solutions

Government Vulnerability and Compliance Management Solutions

     
 
 

Federal Solutions Overview

 
 
     
   

eEye is a dedicated provider of unified vulnerability management and compliance solutions for Government agencies. Retina.GOV, built upon our world-renowned research team, is an integrated end-to-end vulnerability management and compliance solution designed to help Government departments and agencies with protection and compliancy by defining and monitoring relevant IT controls.

Retina.GOV combines the powers of Retina and our enterprise management console, REM, to form a unified solution designed to help Government departments and agencies with vulnerability assessment and compliancy by defining and monitoring relevant IT controls.

  • Implement policy-based security management including routine security assessments, demonstrated control, and use of timely reports as part of standard processes.
  • Capability to efficiently classify, respond to and resolve potentially high-volume threats.
  • Enable compliance for SCAP, FDCC, and DIACAP initiatives mandated by command authorities.

Retina.GOV monitors both vulnerability and configuration of your IT assets, while correlating compliance requirements to pre-defined baselines and providing automated notification of violations.


Government Regulations and Retina.GOV Certifications


SCAP

Retina Network Security Scanner, the flagship solution component of Retina.GOV, supports the following SCAP requirements:

  • Federal Desktop Core Configuration (FDCC) Scanner
  • Authenticated Configuration Scanner
  • Authenticated Vulnerability and Patch Scanner
  • Unauthenticated Vulnerability Scanner

Retina's SCAP capabilities include the following standards: XCCDF, OVAL, CCE, CPE, CVE and CVSS.

Retina has and continues to remain at the forefront of the SCAP movement being one of the first scanners to adopt XCCDF and OVAL benchmark files for NIST and FDCC. Retina is currently on the SCAP approved tools list and recent additions to the functionality have made Retina one of the most thorough and comprehensive federal compliance assurance tools on the market. Utilizing Retina Network Security Scanner's SCAP engine, users are able to import SCAP content, such as FDCC benchmarks, for interpretation and assessment of network devices. Retina provides an easy-to-use wizard that guides the user through the steps of selecting desired content, providing information on the assets to be evaluated, and launching the assessment scan.

Today, these benchmark features are covered in our Retina Training. In our efforts to remain on the cutting edge, new and improved compliance (SCAP) modules are in development for inclusion in future trainings.

FDCC

eEye's Retina Network Security Scanner is compliant with FDCC 1.2.

The Federal Desktop Core Configuration (FDCC) is an OMB-mandated security configuration which exists for Microsoft Windows Vista and XP operating systems. The Windows Vista FDCC is based on DoD customization of the Microsoft Security Guides for both Windows Vista and Internet Explorer 7.0. Microsoft's Vista Security Guide reflects the consensus recommended settings produced through a collaborative effort amongst DISA, NSA, and NIST.

The Windows XP FDCC is based on Air Force customization of the Specialized Security-Limited Functionality (SSLF) recommendations in NIST SP 800-68 and DoD customization of the recommendations in Microsoft's Security Guide for Internet Explorer 7.0.

DIACAP

The DoD Information Assurance Certification and Accreditation Process (DIACAP) is the United States Department of Defense (DoD) process of ensuring that risk management is applied on information systems (IS).

DIACAP defines a DoD-wide formal and standard set of activities, general tasks and management structure process for the certification and accreditation (C&A) of a DoD IS that will maintain the information assurance (IA) posture throughout the system's life cycle.



Contact eEye Government Sales

Training
Support

Government Clients

 

Government Events

2 or 3 Day Open Gov Training Course on Retina, REM, DoD STIG and Gold Disk

Date: November 6 - 8, 2012
Location: Phoenix, AZ

Date: December 4 - 6, 2012
Location: Herndon, VA

Date: January 15 - 17, 2013
Location: San Antonio, TX

Date: February 5 - 7, 2013
Location: Colorado Springs, CO

Date: March 5 - 7, 2013
Location: Herndon, VA

Date: March 26 - 28, 2013
Location: Phoenix, AZ

Date: April 16 - 18, 2013
Location: Panama City, FL

Learn More >> 

Government News 

  • eEye Extends Leadership Position in Federal Government Standards for SCAP, FDCC, and DISA STIGS. Read More >>
  • CTO Marc Maiffret speaks with Nextgov about today's cyber threats and what should most concern government. Read more>>
     
 

Certifications

SCAP | FDCC | FISMA

DIACAP

CVE

OPSWAT

Government Sales

Phone: 866.282.8276
   

 
Contact | Site Map | Privacy | Website Feedback | 1.866.339.3732
© 1998 – 2012 eEye Digital Security. All rights reserved.