Tapping a Vast Vulnerability Database In addition, BeyondInsight v5.1 includes a new Audit Viewer that enables users to search and review all vulnerability audits and mitigation procedures, whether the vulnerability has been identified in their environment or not. See the screenshot below for an example of a basic search for new vulnerabilities added to the Retina vulnerability database last month.
This view can be saved, searched, and subscribed to (via email or network share) such that teams can review new audits or legacy findings without first conducting a vulnerability assessment. Users can search on any field, such as CVE number or target technology, and view a summary of all available Retina CS audits through the BeyondInsight interface. Revisiting our Oracle example, DBAs would be notified when new audits are added – and they could then access the Audit Viewer to review all the checks the system performs in order to verify a system is fully patched and properly secured. In addition, BeyondInsight users, guest and auditors can drill-down from the solution’s high-level executive and summary reports to detailed vulnerability information for further analysis and remediation guidance. BeyondInsight v5.1 facilitates proactive vulnerability management by enabling customers to not only pinpoint specific exposures via assessments, but also identify and understand the potential risks to their systems as soon as new vulnerabilities are announced. > Download the BeyondInsight v5.1 New Features Overview > Request a free trial > Learn more about BeyondInsight
Morey J. Haber, Chief Security Officer, BeyondTrust
Morey J. Haber is the Chief Security Officer at BeyondTrust. He has more than 25 years of IT industry experience and has authored four books: Privileged Attack Vectors, Asset Attack Vectors, Identity Attack Vectors, and Cloud Attack Vectors. He is a founding member of the industry group Transparency in Cyber, and in 2020 was elected to the Identity Defined Security Alliance (IDSA) Executive Advisory Board. Morey currently oversees BeyondTrust security and governance for corporate and cloud based solutions and regularly consults for global periodicals and media. He originally joined BeyondTrust in 2012 as a part of the eEye Digital Security acquisition where he served as a Product Owner and Solutions Engineer since 2004. Prior to eEye, he was Beta Development Manager for Computer Associates, Inc. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. He earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.