Required - IT-Grundschutz BSI-100-2 audit file, Nessus, and SecurityCenter 4.6 or higher
The IT-Grundschutz Standards and Catalogues are a set of recommendations designed to assist an organization in achieving an appropriate security level for information throughout an organization. The Federal Office for Information Security (BSI) in Germany develops and maintains the BSI Standards, of which IT-Grundschutz is a part, with the providing methods, processes, procedures, and approaches to information security management, risk analysis, and business continuity management.
This report enumerates known Enterprise Application Vulnerabilities, such as Cisco Access Server, Microsoft Remote Desktop Connection, and Oracle Enterprise. The report displays information for enforcing and verifying IT management policies relating to assets, such as vulnerability, configuration and remediation policies.
SecurityCenter (via PVS, LCE, and Nessus) collects information about installed products, identifies those products using standardized industry methods, and presents that information via this report.