McAfee first enterprise-ready product to complete SCAP validation
Source: McAfee
McAfee, the world’s largest dedicated security provider, recently announced the Security Content Automation Protocol (SCAP) validation of McAfee Policy Auditor 5.0. Classified as a Federal Desktop Core Configuration (FDCC) Scanner and Authenticated Configuration Scanner, Policy Auditor 5.0 is the first enterprise-ready product to achieve this validation, enabling U.S. Federal agencies to comply with the FDCC baseline.
In March 2007, The U.S. Office of Management and Budget (OMB) announced that Federal organizations must meet a core configuration standard for desktop computers. The FDCC baseline, as it is known today, aims to increase overall system security and reduce the cost of system and application maintenance. To help agencies meet these requirements, the National Institute of Standards and Technology (NIST) devised the SCAP validation program, which standardized the process by providing a list of best-practice solutions that would help individual agencies meet the requirements, including the implementation of FDCC scanners into continuous monitoring practices.
Policy Auditor 5.0, which automates the processes required for both internal and external IT audits, is also completely integrated with McAfee ePolicy Orchestrator (ePO), providing seamless management and reporting capabilities. Because both McAfee’s Network Access Control (MNAC) and Policy Auditor share the same engine, federal customers now have the ability to use MNAC to quarantine devices that do not meet government specifications. Policy Auditor 5.0 also provides enhanced policy and compliance measurements complimentary to U.S. government requirements.
This newly achieved SCAP validation again exemplifies McAfee’s commitment to the federal marketplace, where it will continue to focus on the needs of government customers by providing products that meet federal requirements for certifications, regulations, and other requirements for greater security, which is vital to the public sector. In addition to SCAP and FDCC support, McAfee’s broader portfolio also supports FISMA (NIST 800-53) requirements, as well as other government guidelines. This validation amplifies McAfee’s customer dedication, enhancing the ability of currently deployed products while enabling government customers to meet compliance mandates.