Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Passing IT-Grundschutz Audits Easily: Tenable Simplifies Vulnerability Management According to BSI IT-Grundschutz Standards

August 9, 2013

Columbia, MD

Ready-to-use audit files ensure ongoing IT-Grundschutz compliance.

Tenable, specialized on efficient and automated vulnerability detection, offers SecurityCenter, a solution which will dramatically simplify compliance with BSI standards and IT-Grundschutz recommendations.

Tenable: pro IT-Grundschutz – contra unknown risk

The IT-Grundschutz standards and catalogs comprise a set of recommendations, which support organizations in optimizing and maintaining their security posture for internal information management. The Federal Office for Information Security (Bundesamt für Sicherheit in der Informationstechnik, BSI) in Germany develops and maintains these BSI standards, which include the “IT-Grundschutz” (IT basic protection). The IT-Grundschutz recommends methods to implement procedures, processes and approaches for the information security management, risk analysis and business continuity management.

With the Nessus and SecurityCenter product family, Tenable offers a set of solutions which significantly facilitate compliance with BSI standards and IT-Grundschutz recommendations and enforces them even if the organization’s network is expanded and evolved. Hence, with Nessus and SecurityCenter, standard-based IT-Grundschutz and BSI audit files are available, which allow easy fulfillment of the BSI recommendations for Windows systems (available now) and Linux systems (upcoming). Using those prepared audit templates, organizations can perform IT-Grundschutz based assessments and quickly identify and remedy problems that can impair the technical and infrastructural safety of their business data.

Other types of Nessus and SecurityCenter assessments can identify sensitive data, which can be protected according to the IT-Grundschutz recommendations – e.g. credit card data and sensitive business information. Nessus and SecurityCenter can perform these searches agent-less, they only need valid credentials to scan a remote computer.

Intelligent continuous monitoring with Tenable Unified Security Monitoring (USM)

By combining Nessus with other components from the Tenable Unified Security Monitoring (USM) architecture, organizations can continuously monitor and assess their compliance with the IT-Grundschutz recommendations.

This way, the use of Nessus integrated with SecurityCenter, the Passive Vulnerability Scanner and the Log Correlation Engine allow continuous monitoring and detection of new devices in the network, which can possibly cause exposure. Furthermore, identification of relevant assets is supported, which allows organizations to limit their IT-Grundschutz audits to these assets and lower their time and effort for regular scans.

About Tenable

Tenable®, Inc. is the Cyber Exposure company. Over 24,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. As the creator of Nessus®, Tenable extended its expertise in vulnerabilities to deliver Tenable.io®, the world’s first platform to see and secure any digital asset on any computing platform. Tenable customers include more than 50 percent of the Fortune 500, more than 20 percent of the Global 2000 and large government agencies. Learn more at tenable.com.

Contact Information:

Cayla Baker
[email protected]
(443) 539-6476

Stay up to date!

Subscribe to our email alerts for new press releases.

Subscribe for press release updates

Try for Free Buy Now

Try Tenable.io Vulnerability Management


Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Sign up now and run your first scan within 60 seconds.

Buy Tenable.io Vulnerability Management

Enjoy full access to a modern, cloud-based vulnerability management platform that enables you to see and track all of your assets with unmatched accuracy. Purchase your annual subscription today.

65 assets

Try Nessus Professional Free


Nessus® is the most comprehensive vulnerability scanner on the market today. Nessus Professional will help automate the vulnerability scanning process, save time in your compliance cycles and allow you to engage your IT team.