Norman Patch and Remediation

Key Product Features

Benefit

Comprehensive Endpoint Assessment

• Provides comprehensive understanding of security posture for managed endpoints via in-depth assessment of vulnerabilities, patch status, security configurations, installed software, and hardware inventory.

Consolidates Visibility and Lower TCO

• Single agent collects security and configuration information to provide consolidated visibility and lower TCO.

Open Architecture

• Supporting open standards and multiple sources of content, Norman Patch and Remediation delivers a customizable and diverse platform for operational security management.
• Seamlessly manages third party vendor content and automatically detects and obtains prerequisite patches.

Provides a Consolidated, Single Tool To Meet All Your Patching Needs

• Single tool has extensibility to meet needs of customers as well as flexibility to easily accommodate new software and initiatives as they arise.
• Manage and report on Norman and third party licensed content and prerequisite patches automatically without complex or manual credentials management.

Agent-Based Architecture

• Lower overhead agent with scalable architecture to secure on- and offline systems.

Provides Comprehensive On- and Offline Protection

• Protects laptops, servers, and desktops that are often disconnected from the network and reduces network bandwidth usage.

Directory Services Integration

• Dynamic creation of groups based on existing Microsoft Active Directory environments with cascading inheritance for agent policy, mandatory baseline and user permissions.

Saves Time and Cost

• Through the integration with Active Directory there is no need to recreate the logical organization of systems, thereby saving time and delivering lower TCO

Comprehensive Remediation Actions

• Vulnerability audits and remediations with wide support across major OS platforms (Windows, Linux, MacOS, Sun Solaris, HP, etc.), POSIX and infrastructure devices.
• Vulnerability audits include security configurations, OS and application vulnerabilities, null passwords, patch-level related vulnerabilities, known hacking tools, malware, common worms, and P2P software checks.

Enhances Security Posture and Lowers TCO

• Broad vulnerability assessment and remediation database optimizes IT operations and provides better security posture and lower TCO.

Automated Agent Distribution

• Automated deployment of the Norman remediation agent to unmanaged (rogue) computers.

Saves IT Operations Time and Effort

• Ensure maximum coverage and protection, with minimal time and effort required by IT operations.

Automatic Notifications

• Email alerts can be sent to administrators to notify them of a variety of issues, including subscription or remediation failures, upcoming license expiration and more.

Improves Security

• Improve security through the timely response to issues.

Improves Productivity

• Improve administrative productivity through proactive, automated alerts.

Flexible Reporting

More than 20 reports that provide detailed information on all aspects of the patch and remediation management process, including agent policy status, vulnerability deployments, asset inventory and more.

Provides Comprehensive Visibility

• Provides insight into the security status of the organization.

Ensures Audit Readiness

• Rapidly respond to internal or regulatory compliance requirements.

Flexible Operating Hours

• Administrators can define specific days and intervals of time during which the agent can communicate with the server and perform operations, in granular half hour increments

Ensures No Downtime or Disruptions

• Minimize business disruptions and thus improve the productivity of the organization.

Flexible Group Management

• Creates custom computer groups based on the enterprise’s needs
• Allows the administrator to represent multiple layers of geographical or organizational structure within the solution
• Hierarchical "Nested" Grouping

Increases Deployment Accuracy and IT Efficiency

• Employ an organized approach via custom groups allowing you to increase deployment accuracy and IT efficiency.

Increases Productivity

• Reduce agent and group configuration efforts through more efficient creation and management of agents within groups.

Improves Policy Management

• Facilitates the deployment of group-specific patches according to your corporate policy.

Highly Scalable

• Ensures complete coverage for the largest worldwide networks with high-availability topologies and distribution point architecture that allows packages to be cached locally, thus minimizing network traffic and optimizing bandwidth utilization.
  Enables the inventory of virtual machines via VMware guest auto-grouping.

Adapts to Your Growing Business

• Leverages your current network infrastructure in order to lower TCO from day one of implementation through the life of the subscription.
• Adapts to various organizational setups, so you can always integrate the scanner into new business structures.
• Ensures inventory and management of both physical and virtual environments from one consolidated console.

Network Access Control (NAC) Support

• Automatically assesses endpoints as they try to access the network, discovers missing patches, incomplete virus protection or other security configuration issues and automatically remediates endpoints to a compliant state.

Improves Your Security Posture

• Assures that only compliant endpoints can gain access to the network and automatically remediates any non-compliant machines into an authorized state so network access can be granted.

Key Indicator Dash Board

• Enables creation of a custom dash board for the most critical information in order to highlight the success of your organization's patch management process from a list of 8 key indicators.

Provides Visibility Into Real-Time Patch Status & Overall Security Posture

• Provide an informative snap shot of current patch status in order to report to executive management

Multi-Patch Deployments

• Delivers multiple patches to multiple computers in one distribution.

Reduces IT Costs

• Multiple vulnerabilities are simultaneously eliminated while minimizing IT costs

Multi-platform Support

• Enables security of all operating systems in heterogeneous networks, including Windows, Unix, Linux, and Apple.

Provides a Consolidated, Single Tool To Meet All Your Patching Needs

• Corporate patch policies are enforced regardless of endpoint platform
• Software-defect vulnerabilities are eliminated per policy on all platforms

Policy-based Administration

• Ensures that all systems meet a mandatory baseline policy - a key aspect of corporate security and regulatory compliance.

Enforces Compliance In Your Organization

• Set specific policy and enforcement for each group in the enterprise.
• Provide maximum policy flexibility with automated enforcement, saving both time and effort by IT staff.

Role-based Administration

• Enables the Patch Management Administrator to delegate/ approve patch management activities/ information across multiple employees, based on the employee’s role or security level.

Increases Productivity

• Significantly improve productivity while maintaining security.

Subscription Service

• Automatic and secure identification and notification of the latest patch vulnerabilities across multiple platforms and applications.

Saves IT Operations Time and Effort

• Eliminate the cost of manually monitoring, acquiring and staging patches for multiple platforms and applications throughout the enterprise.

Enhances Your Security Posture

• Stay patched and updated automatically
• Ensure no unauthorized packages enter your network.