• BOUNCER by CoreTrace
  • Product Overview
• Benefits of BOUNCER
  • Overview of Benefits
  • Malware Threats
  • User-Privilege Threats
  • Configuration Lockdown
• Features of BOUNCER
  • Overview of Features
  • Trusted Change
• Regulatory Compliance
  • Overview of Compliance
  • NERC CIP
  • PCI DSS
  • NIST sp800-53
  • The Sarbanes-Oxley Act
  • HIPAA
• Industry Solutions
  • Overview of Solutions
  • Engineering and Utilities (SCADA)
  • Hosted VoIP Providers
  • Government
• Roles & Responsibilities
  • Overview of Use by Role
  • IT Administrators
  • IT Managers
  • Executives

• Join LinkedIn Group: "SCADA / Control System Security Professionals"
• Join LinkedIn Group: "Application Whitelisting Professionals"
• Watch CoreTrace CEO Toney Jennings' interview with Richard Stiennon at RSA 2009

NIST sp800-53 compliance with BOUNCER by CoreTrace

The National Institute of Standards and Technology (NIST) Special Publication 800-53, entitled "Recommended Security Controls for Federal Information Systems", details security standards for low, moderate, and high impact information systems.

The guidelines state, relative to information technology security:

"Continuous monitoring activities include configuration management and control of information system components, security impact analyses of changes to the system, ongoing assessment of security controls, and status reporting. The organization establishes the selection criteria for control monitoring and subsequently selects a subset of the security controls employed within the information system for purposes of continuous monitoring."

Clearly, your agency is responsible for ongoing configuration management and monitoring of your information systems. BOUNCER by CoreTrace prevents ‘configuration drift’ by locking down an endpoint's configuration upon initial deployment. It takes a snapshot of the desired configuration, and then not even a user with Local Administrator privileges can change it. This lockdown accomplishes two primary goals:

1. Your system configurations do not change over time, no matter how many users touch the system.

2. Your endpoints are secure from external threats, no matter how they are delivered.

BOUNCER application whitelisting technology quickly and using very few system resources compares each application that tries to run against a list of known good and approved applications. If the program is on the list, it runs. If it is not, then nothing happens — the malware or unauthorized application does not execute, and system administrators receive an alert that there was a policy violation.

BOUNCER also makes it easier than ever to protect your endpoints from configuration drift with a trio of new features available in BOUNCER 5:

• Automated installation of endpoints in just minutes, without hand-tooling a whitelist for each system, so you can secure your infrastructure today.

• Efficient Group Management of endpoints allows you to manage many endpoints as a single collection, with the same policies, audits, and more.

• Optional Active Directory Integration gives you the power to leverage any investment you've made in Active Directory to perform "push" installs even more quickly.

While patching vulnerabilities is a good security practice, none of this functionality requires immediate emergency patching to stay on top of zero-day or zero-hour attacks. You're protected against deposited malware, freeing resources to pursue deeper organizational goals.

• Company
• Contact
• Support
• Site Map
• Legal
• Privacy Policy