Enforce-IT is a revolutionary endpoint security solution which is based on the Proactive Information Security Process. It provides
· Security Policy Enforcement · Application Control · Integrated Endpoint Security · Network Admission Control Policy · Network Segmentation and Quarantine
Security Policy Enforcement Enforce-IT helps enforce internal IT security policies on vital issues like · Configuration and use of authorized devices like modems. · Installation and use of unapproved hardware. · Installation and use of unapproved software. · PC recommended security and lock down settings. · Password policy and password change policy. There are many predefined policies to choose from. The administrator could also design his own policies using the policy builder.
Application Control Enforce-IT Application Control can help · Control and audit the use of authorized applications. · Block undesirable applications such as Peer to Peer networking and Instant Messaging. · Eliminate all Viruses, Worms, Spywares and other Malicious Softwares.
Integrated Endpoint Security Enforce-IT employs a layered defense system that protects endpoints from both known and unknown exploits. By closing unused ports, checking application integrity, and restricting network access to authorized applications, Enforce-IT is able to defend against exploits even before signatures and patches have been developed. Integrated Endpoint security is ensured by implementing the following controls · Removable Media Control. · Executable Program Execution Control. · Resource sharing control. · Use of secure Passwords. · Patch all Operating System Vulnerabilities. · Correct Installation and configuration of security software.
Network Admission Control Policy Enforce-IT ensures that all endpoints are compliant with corporate security policies before they are admitted to the network. This ensures secure access to corporate resources for third parties, such as business partners, suppliers, and work-at-home employees, ensuring that corporate information is protected while enabling the third parties to do their work. · Protection from new rogue PC’s. · Quarantine Zone to check Laptops before they connect to the corporate network. · Check Wireless and VPN Clients before they are admitted to the corporate network.
Network Segmentation and Quarantine Enforce-IT manages Network Quarantine Zone which ensures the following · Non compliant endpoints would not affect other’s on the network. · They can be safely repaired before being connected back to the corporate network.
Comprehensive Vulnerability Assessment Enforce-IT identifies known security vulnerabilities quickly and accurately. It scans for the following vulnerabilities on every PC and Server. · Unsafe Resource sharing. · Missing or wrongly configured Security Software (Anti Virus/ Firewall). · Insecure security configuration and settings. · Weak or empty Passwords. · Operating System Vulnerabilities.
Security Audits Enforce-IT helps · Continuous enforcement of IT security policies. · All endpoints are audited. · Nobody can bypass the security audit.
Security Management Console Enforce-IT scans the entire network it discovers the assets on the network and organizes the different PC’s and servers into logical groups giving the administrator a clear picture of the enterprise network infrastructure. Enforce-IT provides · Unified management interface. · Helps collect, analyze, monitor and report on the enterprise’s security centrally. · Schedule network wide tasks to be executed in an unattended mode. · Distributed scan model to manage large multi location distributed networks. · Seamlessly integrates with directory services like Microsoft Active Directory. · Supports SSL-VPN, IPSEC VPN and Wireless network.
Regulatory Compliance Enforce-IT helps in regulatory compliance by · Protecting privacy rights by ensuring the integrity of endpoints that handle and store data. · Ensures that confidential/proprietary information is not illegally transferred over removable media. · Provides auditable evidence of IT controls, supporting compliance reporting for regulations, such as BS 7799.
