News   Events   About Us  

 
Triumfant navigation bar
Solutions
Triumfant Overview: Endpoint Security
Triumfant Security Configuration Management
Triumfant Malware Detection and Remediation
Solutions for the Government

- FDCC Compliance

- SCAP and
  Security Automation
  Endpoint Security  

Security Configuration Management

It is the simplest of truths: regardless of whether you are talking about physical security or IT security, the most effective protections in the world only work when properly engaged. Triumfant enables businesses and government agencies to start every day with the knowledge that every endpoint machine across the organization is audit ready and properly configured to maximize its security readiness. That is because Triumfant automatically enforces configurations, policies and controls that span organization specific configuration requirements and compliance guidelines as well as federal and industry mandates on a daily basis without human intervention.

Persistent Security Readiness

We call this automated, continuous enforcement of configurations and policies Persistent Security Readiness. With Triumfant, every machine is effectively audited every day, and if a mis-configuration or non-compliant condition is detected, the problem is analyzed, an appropriate remediation is synthesized, and the machine is automatically remediated to restore it to compliance. There are no scripts to write, no fixes to be distributed through patch management. The remediation is contextual and specific to the problem detected on the individual machine. The remediation is executed without the need for intervention from IT support or the end user, and will return the machine to compliance without the need to re-boot or re-image. The result is every machine, every day security readiness and compliance with significantly reduced support costs, coupled with unparalleled visibility into the audit-ready state of the endpoint population. Triumfant will also extend the effectiveness of other endpoint protection tools by ensuring that those tools are properly deployed and configured on each machine.

Flexible, Customizable, Surgical

With Triumfant, organizations get the deepest scan scope in the industry – over 200,000 attributes per machine - which powers unmatched capabilities for detection and remediation. Triumfant uses patented analytics to group and correlate the attributes from the endpoint population to build a normative baseline of the configurations in the organization down to the group level, and then use that baseline to identify problems and remediate those problems automatically. Triumfant learns what is normal to your environment and then enforces what it learns. This unique ability to detect unexpected changes and conditions at the most granular level empowers Triumfant to identify compliance issues even when there is not a specific policy in place that covers a specific setting.

Triumfant also enforces explicit policies and configurations. These can be organizational specific or based on established policy and compliance sets. Triumfant provides standard compliance and configuration templates and has out of the box policies for specific compliance standards such as Federal Desktop Core Compliance (NIST SCAP FDCC). Policies can be created and easily customized through an intuitive wizard driven interface. The ability to group computers by function, location, or other criteria means that policies can be applied to the entire endpoint computer population, or tuned to create exceptions and variations for specific groups. Triumfant can also assess the compliance to multiple rule sets simultaneously for each computer. Triumfant also comes complete with Green IT Power Management policies that allow organizations to control endpoint power management through a common platform with security configuration management.

Managing Unauthorized Applications

Triumfant also excels at surgically and automatically removing unauthorized applications, eliminating major issues that potentially create system instability, open new vulnerabilities and undermine the ability of computers to do the work for which they are intended. Triumfant builds a normative whitelist that tracks every application running in the endpoint environment, and provides a full application inventory that shows a complete, actionable report of what is running in the organization’s environment. Administrators can be alerted when an anomalous application has been installed, and specific blacklist policies can immediately remove specific applications without intervention. This unique combination of whitelisting, greylisting, and blacklisting addresses the challenges caused by unauthorized applications with minimal labor costs, effectively eliminating the source of service disruptions and increased security risk.

Unparalleled Insights Into Your Endpoint Computer Population

From the industry’s deepest scan scope comes a wealth of information about the endpoint computer population and the compliance and configuration status of that population. Triumfant provides a rich set of reports that provide insights from the computer level to executive level summary views, even down to compliance by a given rule or policy. These reports are practical and actionable, and can easily be created in common formats such as excel and PDF so they can be assimilated into business documents. Triumfant uses the NIST SCAP vulnerability database to identify known vulnerabilities in every machine.

What Makes Triumfant Different

The underlying technology of Triumfant is the only tool on the market that continually scans all of the granular attributes of every machine every day, giving Triumfant a scan scope that is unmatched. The unique ability of Triumfant to build a remediation on the fly means that Triumfant fixes what it finds with minimal human interaction. These capabilities make Triumfant Resolution Manager the only tool that verifies the compliance status of every computer every day and automatically remediates machines found to be in non-compliance, creating a state of persistent security readiness. By automating the tasks around configuration management and policy management, this state of continuous compliance is achieved through significantly reduced labor costs, providing ROI in 12 months or less.

top

Benefits

  • Maintains a state of Persistent Security Readiness on every computer, every day effectively reducing the attack surface for each machine and lowering the IT security risk for the organization.
  • Maximizes the effectiveness of other endpoint protections and configurations be ensuring that these protections are in working order and are properly configured.
  • Significantly reduces support costs by automating policy and configuration enforcement and remediation of detected problems.
  • Responds to problems with automated remediations that are situational, contextual, and completely reversible.
  • Effectively removes unauthorized applications that represent needless support costs and unnecessary organizational risk.
  • Promotes rapid adoption via out-of-the-box policies and an intuitive wizard driven interface to customize the policies for the particular needs of the organization.
  • Increases visibility across the entire environment by enabling a broad view into the configuration and compliance status of the organization from the executive view to the details for every machine.

top

Features

  • Complete control and flexibility in policy deployment

    via a policy template authoring environment that enables customers to develop their own policy templates or adapt existing policy templates. Policies can be deployed organization-wide or to smaller groups down to the individual machine level

  • Support of Common Compliance Initiatives

    with out-of-the-box policies for the following:
    • Payment Card Industry Data Security Standard (PCI DSS) Compliance
    • Federal Information Security Management Act (FISMA) Compliance
    • Federal Desktop Core Configuration (FDCC) Compliance
    • Security Content Automation Protocol (SCAP) Compliance
    • Health Insurance Portability and Accountability Act (HIPAA) Compliance
    • Sarbanes-Oxley (SOX) Compliance

  •  

    Compliance Management Reporting

    enables unique views such as compliance status by device, requirement or rule, at varying detail levels, including a falling or expected to fall out of compliance in your environment

  • Audit Trails

    present in-depth visibility of changes occurring over time and their impact on compliance status and system functionality.

  • Automated change analysis

    provides a highly effective control for monitoring unplanned changes, providing the auditor with evidence necessary to judge the effectiveness of the change management program.

top

Next Steps:
Triumfant
Triumfant
Triumfant
Resources:
Overview: An introduction to Triumfant
Fact Sheet: Endpoint Security
Solution Sheet: Endpoint Security

"Because every vendor's solution could handle common viruses and malware, each received an A grade in the performance category, with the exception of Triumfant Resolution Manager, which earned an A+ by far exceeding the other products in its ability to detect and remediate malware."
Government Computer News
Review of Endpoint Security Suites
August 4, 2009

 

Triumfant
Triumfant
© 2010 Triumfant, Inc. | Website by Ashley Cyber Services, LLC
Resource Library | Site Map | Privacy Policy | Contact Us