icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Mobile Summary

by Megan Daudelin
January 19, 2016

Identifying mobile devices on a network is a growing challenge. An organization's need to manage mobile devices increases as Bring-Your-Own-Device (BYOD) and enterprise mobile device programs become more commonplace. Mobile Device Management (MDM) solutions are gaining popularity in an attempt to improve the security of mobile device policies. By integrating SecurityCenter with implemented MDM platforms, organizations can more effectively monitor the presence of mobile devices in their network.

The Mobile Summary dashboard assists security teams in understanding the presence of mobile devices in the network. Devices and vulnerabilities are tracked based on device model and vulnerability severity. A series of components show detailed information about users registered to an organization’s MDM solution. Nessus and SecurityCenter support scanning of mobile devices using MDM solutions. The supported MDM solutions are currently Apple Profile Manager, Microsoft ActiveSync, VMWare AirWatch, MobileIron MDM, and Good Technology MDM. This dashboard leverages mobile data and the plugin output to provide a clear depiction of the mobile devices that have been registered to the MDM solution.

The components in this dashboard focus on two primary concerns: the users with registered devices and the vulnerabilities associated with registered devices. User information explains which users have registered devices, as well as tracking the number of vulnerabilities associated with their devices. Device information details the breakdown of registered devices by mobile device model, as well as including counts of vulnerabilities detected. Additional detail about specific mobile devices and vulnerabilities is available by drilling down into each component. Security analysts can use the information displayed to identify what mobile devices and users are registered in the MDM solution in order to determine whether additional steps or policies regarding mobile devices are necessary.

This dashboard and its components are available in the SecurityCenter Feed, a comprehensive collection of dashboards, reports, Assurance Report Cards and assets. This dashboard can be easily located in the SecurityCenter Feed under the category Executive. The dashboard requirements are:

  • SecurityCenter 4.8.2
  • Nessus 6.5.4

SecurityCenter Continuous View (CV) provides continuous network monitoring, vulnerability identification, risk reduction, and compliance monitoring. Nessus is continuously updated with information about advanced threats and zero-day vulnerabilities, and new types of regulatory compliance configuration audits. By integrating SecurityCenter CV and Nessus with an organization’s MDM solution, SecurityCenter CV provides the most comprehensive view of network security data.

This dashboard includes the following components:

  • MDM Managed Device Summary: The MDM Managed Device Summary pie chart shows a breakdown of the top 100 mobile device models by count that are managed by the MDM solution.
  • Mobile Device Count, Critical and High Severity Summary: The Model Device Count, Critical and High Severity Summary bar chart displays the top 100 mobile device models by count, along with the number of critical and high severity vulnerabilities associated with each model.
  • Top 10 Mobile MDM Users: The Top 10 Mobile MDM Users table leverages the “User Summary” mobile tool and displays the top 10 users based on the total vulnerabilities.
  • MDM Managed Device Vulnerabilities: The MDM Managed Device Vulnerabilities matrix displays the counts and severities of vulnerabilities associated with MDM-registered devices by mobile device model, OS, or manufacturer.