Overview

The integration between BigFix and Tenable helps organizations to see everything, predict what matters and act to confidently reduce risk. BigFix Insights for Vulnerability Remediation for Tenable dramatically shrinks the gap between security and operations organizations by automatically providing the most appropriate BigFix Fixlet for remediation from vulnerabilities detected by Tenable. It is included in the BigFix Compliance and Lifecycle Suites.

Today the overall correlation process to fix vulnerabilities can take many hours due to manual and ineffective methods of vulnerability research and then communicating results to various teams within the company. With BigFix Insights for Vulnerability Remediation for Tenable, the time required is reduced to minutes as it automatically recommends the most appropriate patch and configuration settings for thousands of vulnerabilities, resulting in reduced time to remediation, decreased gaps in compliance and minimized attack surface.

Architecture Overview

The below figure shows an architecture overview of BigFix Insights for Vulnerability Remediation:

Highlights

• IT Operations and Security teams can automatically reconcile vulnerability detections with remediation actions, collapsing compliance and eliminating the organizations overall cyber​ exposure.

• Prioritize and focus on the most critical vulnerabilities from Tenable, then automatically correlate remediation workflows with BigFix Baselines and Fixlets​ using BigFix supersedence engine.

• Save time and effort on remediation alignment and eliminate cumbersome, manual processes such as file exchange and web searches for correlation.

• Reduce the need for specialized expertise by providing automation and embedding advanced patch analytics into the process.

• Leverage Tenable’s Vulnerability Priority Rating (VPR) for vulnerability prioritization, which combines Tenable-collected vulnerability data with third-party vulnerability and threat data and analyzes them together with the advanced data science algorithm developed by Tenable Research.

• Leverage the broadest set of remediation capabilities from BigFix, both in terms of supported OS platforms, and-out-of-the-box, certified remediations.

   

Benefits

• Combine market leadership from both Tenable and HCL BigFix to reduce the overall cyber risk for your organization. ​

• Align security and IT operations, improving awareness of what remediations are needed to address detected vulnerabilities to reduce the most risk.

• Have confidence in knowing you are remediating the right vulnerabilities based on prioritized recommendations.

• Rapidly close vulnerability gaps, reducing remediation time from hours or days to minutes.

• Shrink the attack surface and close the loop between vulnerability detection and remediation.

• Increase BigFix's return on investment (ROI) for both security and operations teams.

• Tenable.io users with Tenable Lumin can better understand organizational risks to better prioritize which vulnerabilities on which endpoints should be remediated first by using Tenable’s ACR (Asset Criticality Rating) and AES (Asset Exposure Score).

 

BigFix Component Requirements:

• BigFix Insights

BigFix License Requirements:

• BigFix Lifecycle OR
• BigFix Compliance

Tenable License Requirements:

• Tenable.sc OR
• Tenable.ep OR
• Tenable.io

Resources:

• Video: Remediate Vulnerabilities Faster Than Ever With BigFix Insights for Vulnerability Remediation 2.0
• Read the Announcement
• HCL BigFix Implementation Guide
• Tenable Page
• Tenable Solution Guide
• BigFix Remediate with Tenable
• ESG Report
• Request a Tenable Demo

  Contact Us