Continuous endpoint compliance delivers pervasive network security advantages
RSA CONFERENCE, SAN FRANCISCO, 24 February 2014 — Remote users, mobile and transient devices, BYOD and cloud computing are the new normal for today’s “extended enterprise network.” To be competitive, businesses need to provide their users unfettered, any means access to corporate networks and hosted corporate resources without compromising security. ForeScout Technologies, Inc., a leading provider of pervasive network security solutions for Global 2000 enterprises and government organisations, today revealed plans for CounterACT RemoteControl, which enables IT organisations an easy and effective means to monitor and enforce policy of remote corporate and personally owned devices.
According to an IDC report, the world’s mobile worker population will reach 1.3 billion or 32.7 percent of the total workforce by 2015.1 As such, employees are using their PCs and smart devices to conduct business activities online and off the corporate network. Companies have made considerable investments towards issuing security policies and implementing host-based security controls, such as patch management, anti-malware, firewall, intrusion prevention and encryption. IT organisations predominantly use network access control (NAC) solutions to monitor and enforce endpoint security standards for both company-owned and personal devices that are connected to the network. Unfortunately, endpoint compliance is less assured for remote and transient devices that are online but not connected to the corporate network – making them susceptible to advanced threats, data leakage and other security exposures.
Driven by customer demand, ForeScout will reduce these risks by enabling its award-winning ForeScout CounterACT™ platform to continuously monitor and bolster endpoint security for devices both on and off the network with the introduction of CounterACT RemoteControl. By simply activating this CounterACT capability, IT organisations can:
• Gain visibility into remote corporate-issued and BYOD-enrolled devices
• Use one set of endpoint compliance policies and have them automatically and appropriately applied to devices both on and off the corporate network
• Uniformly monitor endpoint security standards to track adherence, to facilitate mitigation of violations and exposures and to help preempt threats before they reach the corporate network
• Reduce the costs associated with host-based security issues and related remote user help desk calls and problem-resolution tasks
• Preserve user experience by enabling granular, flexible policies that can inform users or attempt to mitigate problems before they connect to the corporate network
“Our customers are initially stunned to learn of the number and types of devices actually on their networks and, more so, the extent of non-compliant devices accessing network resources,” said Gord Boyce, CEO of ForeScout. “By leveraging ForeScout CounterACT, IT can close these blind spots. Customers also have concerns about their visibility and security over remote users and devices. The upcoming CounterACT RemoteControl capability allows us to address these risks and deliver on our promise of pervasive network security.”
Beyond the conventional NAC features of device authentication, guest registration, BYOD management and policy-based network enforcement, CounterACT delivers dynamic asset intelligence to help IT organisations find and mitigate rogue, vulnerable and non-compliant devices, as well as to remediate endpoint integrity issues, such as those posed by inactive, corrupt or non-existent host-based security systems and unwanted software. CounterACT interoperates with a broad range of network and security solutions including popular mobile device management (MDM) systems. The appliance employs a scalable, plug and play architecture that readily works with diverse and legacy infrastructure to ensure rapid deployment, low cost of ownership and accelerated time to value. Additionally, administering multiple appliances can be accomplished in a single CounterACT console capable of managing hundreds of thousands of endpoints.
The ForeScout CounterACT RemoteControl feature is planned to be available mid-2014. This innovative functionality will be demonstrated at the RSA 2014 Conference, 24-28 February, at the Moscone Convention Centre in San Francisco at ForeScout’s booth #1027.
ForeScout intends to offer the CounterACT RemoteControl capability as a downloadable software option that will be available to ForeScout customers under active maintenance at no additional charge.
The option would transform a new or existing CounterACT into a CounterACT RemoteControl appliance. This RemoteControl appliance is placed outside the corporate network in a corporate DMZ and is administered through the CounterACT Enterprise Manager – dynamically updating remote endpoint security policy and obtaining remote endpoint intelligence. A ForeScout SecureConnector client for PCs is used to monitor and enforce policy and remediate issues on the remote device as well as communicate with the RemoteControl appliance. The planned release opens the door for additional managed security services.
The ForeScout CounterACT platform will enable a unified view and uniform policy to be applied to corporate and enrolled-BYOD assets that are attempting to connect to or are on the corporate network, as well as those operating outside the corporate network and in the cloud. As a result, organisations can achieve continuous monitoring and mitigation capabilities that better leverage their existing investments, optimise their IT resources and enhance their overall security posture.
About ForeScout Technologies, Inc.
ForeScout delivers pervasive network security by allowing organisations to continuously monitor and mitigate security exposures and cyberattacks. The company’s CounterACT platform dynamically identifies and assesses all network users, endpoints and applications to provide visibility, intelligence and policy-based mitigation of security issues. ForeScout’s open ControlFabric technology allows a broad range of IT security products and management systems to share information and automate remediation actions. Because ForeScout’s solutions are easy to deploy, unobtrusive, flexible and scalable, they have been chosen by more than 1,500 enterprises and government agencies. Headquartered in Campbell, California, ForeScout offers its solutions through its network of authorised partners worldwide. Learn more at:www.forescout.com.