January 3, 2011
Tenable Network Security, Inc., the leader in Unified Security Monitoring and creator of the popular and award-winning Nessus vulnerability scanner, announced today that Tenable SecurityCenter 4 has been validated by NIST to perform Security Content Automation (SCAP) FDCC Compliance Auditing for the Microsoft Windows XP and Vista platforms. Tenable SecurityCenter was one of the original solutions to receive FDCC certification. Certification of the latest version of Tenable SecurityCenter allows U.S. Government agencies to utilize Tenable’s latest innovative features to meet FDCC compliance.
In July of 2007, the U.S. Office of Management and Budget (OMB) released a memorandum to Federal CIOs mandating that all government agencies implement FDCC for all Windows XP and Vista desktops. In addition, all government agencies must use, when available, a NIST SCAP validated tool to audit and monitor compliance with the FDCC mandate.
SCAP is a suite of open standards that enumerates software flaws, security related configuration issues, and product names, measures systems to determine the presence of vulnerabilities, and provides mechanisms to rank (score) the results of these measurements in order to evaluate the impact of the discovered security issues. SCAP defines how these standards are used in unison to accomplish these capabilities.
“NIST’s SCAP tool validation is important because it provides independent, standards-based verification of the security functions delivered by Tenable’s SecurityCenter suite,” said Ron Gula, CEO of Tenable. “Tenable is pleased to announce this validation for SecurityCenter 4 and we are committed to supporting NIST's Federal Desktop Core Configuration standards and delivering solutions that help make government agencies both secure and compliant.”
For more information on Tenable’s validation status with NIST, please click here.
For more information on how Tenable SecurityCenter 4 performs FDCC audits, please visit the Videos section on our website.
Tenable™ is the Cyber Exposure company. Over 23,000 organizations of all sizes around the globe rely on Tenable to manage and measure their modern attack surface to accurately understand and reduce cyber risk. As the creator of Nessus®, Tenable built its platform from the ground up to deeply understand assets, networks and vulnerabilities, extending this knowledge and expertise into Tenable.io™ to deliver the world’s first platform to provide live visibility into any asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, large government agencies and mid-sized organizations across the private and public sectors. Learn more at tenable.com.