The National Institute of Standards and Technology (NIST) has recognized Tenable Network Security’s SecurityCenter 5 as a Security Content Automation Protocol (SCAP) validated product, certified to perform SCAP 1.2 compatible assessments. SecurityCenter 5 is the foundation for Tenable’s continuous network monitoring solution, SecurityCenter Continuous View.
SCAP was created to provide a standardized approach to maintaining the security of enterprise systems, such as automatically verifying the presence of patches, checking system security configuration settings, and examining systems for signs of compromise. SCAP is also a key component of the Department of Homeland Security’s (DHS) Continuous Diagnostic Monitoring program and is a vital part of securing the nation from cyberattacks.
“SecurityCenter 5 was engineered from the start to be technologically compliant with SCAP standards,” said Ron Gula, CEO, Tenable Network Security. “Federal customers who need a comprehensive, real-time view into overall network health can now export SCAP validated data directly from SecurityCenter 5 to meet NIST and FISMAreporting requirements.”
Launched earlier this year, SecurityCenter 5 represents a new approach to cybersecurity assurance and risk assessment. Along with a suite of unique technologies and sensors, SecurityCenter 5 comes standard with Tenable’s Assurance Report Cards (ARCs). ARCs enable CISOs to measure, analyze and visualize the security posture of their entire IT environment, and report the results in an intuitive report card format, helping to align security policies with organizational objectives.
SecurityCenter 5 is SCAP 1.2 certified for the following capabilities:
- Authenticated Configuration Scanner;
- Common Vulnerabilities and Exposures;
- Assessment of Windows 7 (32 and 64 bit), Microsoft Windows, SP2, Windows XP Pro, SP3 and Red Hat Enterprise Linux (RHEL) 5 Desktop (32 and 64 bit);
- Compliance with SCAP version 1.2: XCCDF 1.2, OVAL 5.10, CCE 5, CPE 2.3, CVE, and CVSS 2, Asset Identification 1.1, ARF 1.1, TMSAD 1.0
Tenable’s SCAP dashboards, included with SecurityCenter 5, not only identify risk but also help detect system security weaknesses. Security teams can now visually track audit performance, scan for compliance and receive pass/fail vulnerability summaries using these dashboards.