- How do you perform vulnerability assessment of your virtualized guests and hosts?
- Do you have a scan engine that targets each virtual machine and hypervisor with just like a normal physical asset?
- Do you treat virtual applications the same way as installed programs for assessment ?
- How do you assess offline images ? Do you have to power them all on to scan them ?
- Do you empower virtual server administrators with security tools to assess the risk of guest sessions ?
- Can you manage images uniquely if they are replicate ?
- Retina can perform assessments on virtualized devices and identify if the host is a virtual or physical device.
- Retina can target virtual machines by communicating directly with vCenter to determine which Guests are installed and which ones are powered on.
- Retina can perform vulnerability assessments on VMware ThinApps.
- Retina can assess for vulnerabilities of Windows VMware images even if the image is powered off. In addition, Retina can optionally power on any image, change the network adapter to a private network, perform an assessment, and power the image back off for a complete assessment process fully automated.
- Retina identifies virtual guests with a unique identify so even cloned or images based on the same template can be tracked as separate assets within the solution.
Morey J. Haber, Chief Technology Officer and Chief Information Security Officer at BeyondTrust
Morey J. Haber is Chief Technology Officer and Chief Information Security Officer at BeyondTrust. He has more than 25 years of IT industry experience and has authored four Apress books: Privileged Attack Vectors (2 Editions), Asset Attack Vectors, and Identity Attack Vectors. In 2018, Bomgar acquired BeyondTrust and retained the BeyondTrust name. He originally joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition. Morey currently oversees BeyondTrust strategy for privileged access management and remote access solutions. In 2004, he joined eEye as Director of Security Engineering and was responsible for strategic business discussions and vulnerability management architectures in Fortune 500 clients. Prior to eEye, he was Development Manager for Computer Associates, Inc. (CA), responsible for new product beta cycles and named customer accounts. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.