start portlet menu bar

HCLSoftware: Fueling the Digital+ Economy

Display portlet menu
end portlet menu bar
start portlet menu bar end portlet menu bar
Close
Select Page
Automation
  | November 7, 2022

BigFix CyberFOCUS Analytics

Robert Leong
Robert Leong
Senior Director and Head of Product Management
BigFix CyberFOCUS Analytics

[This post was updated in March 2023.]

HCL is pleased to announce the availability BigFix CyberFOCUS Analytics for BigFix Remediate, BigFix Lifecycle and BigFix Compliance.  

What Problems Does BigFix CyberFOCUS Analytics Target?  

The BigFix CyberFOCUS Analytics solution is designed to impact big unresolved problems that are the intersection of SecOps, ITOps and the C-Suite.  

  • The CEO is responsible for managing cyber risk, but how do you do that by making business decisions?  
  • SecOps is constantly learning about new threats that are targeting the organization, but it’s hard to partner up with ITOps to stop the threats.  
  • ITOps knows that SecOps has a bunch of priorities, but they can’t easily analyze what’s going on, or track progress, or partner with SecOps.  

What Is BigFix CyberFOCUS Analytics?

It is a way to help SecOps and ITOps team up to remediate vulnerabilities more efficiently: 

The BigFix CyberFOCUS Analytics solution is a unified set of analytics, built into the BigFix Vulnerability Remediation Solution, that takes BigFix-unique information and data (e.g. whether security patches were applied, if patch content is available), and combines it with threat information so that SecOps and ITOps have a novel way to collaborate and align together when proactively protecting against adversarial threats. It is designed to help SecOps and ITOps to reduce the friction between the two teams by answering questions for threats that are time urgent, based on information that only BigFix knows. For example, the CVE Remediation Simulator in CyberFOCUS Analytics tells you which CVEs have the highest value and LEAST BUSINESS DISRUPTION for the effort in remediating a group of CVEs that are ALL considered “Critical” to patch against a threat. This helps SecOps and ITOps to team up on game plans against adversarial threats.   

It is a way to help SecOps and ITOps and the CEO team up to manage cyber risk based on business decisions:  

The BigFix CyberFOCUS Analytics solution also helps SecOps and ITOps to work together, empowering them to maintain revenue flow and operational resilience and stay within the cyber risk tolerance for protection defined by the CEO and the Board. It also provides Protection Level Agreements that:

    • Links business goals and cyber risk, measuring them based on exploitable vulnerability exposure time.  
    • Is based on tools and processes that can be controlled by remediation processes and BigFix automation.  
    • Provides automated high-quality metrics and analysis that can be trended.

What Does BigFix CyberFOCUS Analytics Comprise?

 It comprises several new sets of analytics:  

    1. Advanced Persistent Threat CVE Analyzer confirms priority exposures to CVEs known to be used by MITRE ATT&CK Groups based on whether BigFix patched the CVEs; includes the CVE Remediation Simulator to do instant, real-time ‘what if’ analysis of changes in your vulnerability attack surface to prescribe remediations having the most protective power with the least effort; and correlates the BigFix Patch Content needed and the unpatched devices regarding the CVEs in question to provide immediate protection.  
    2. CISA KEVs Exposure Analyzer confirms priority exposures to CVEs in CISA’s Known Exploited Vulnerabilities Catalog based on whether BigFix patched the CVEs, compares your environment to the CISA-directed due dates for the CVEs and your performance against those due dates, provides information on a number of devices exposed and device vulnerability density, and correlates the BigFix Patch Content needed and the unpatched devices regarding the CVEs in question. 
    3. Protection Level Agreement Analyzer confirms performance against measurable cyber risk control points in reducing exploitable vulnerability exposure time that clearly link to business goals.

BigFix CyberFOCUS Analytics also includes capabilities previously delivered as BigFix Insights for Vulnerability Remediation which  integrates BigFix with leading vulnerability management sources of vulnerability data to guide BigFix users on how to apply the best patch and configuration settings to remediate discovered vulnerabilities, and thus reduce risk and improve security.

How Do I Get BigFix CyberFOCUS Analytics?  

The BigFix CyberFOCUS Analytics solution is available for all customers who have entitlements for BigFix Remediate, BigFix Lifecycle and BigFix Compliance.

How Do I Get More Information?

Learn more by visiting BigFix CyberFOCUS

Comment wrap
Robert Leong
Robert Leong
Senior Director and Head of Product Management
Robert Leong is the Senior Director and Head of Product Management for HCL BigFix. He is responsible for being the voice of the Market for BigFix and the overall strategic Roadmap for the entire product line. Robert is a Cyber Security veteran and a self-professed "MIT Geek" with simultaneous Bachelors and Masters degrees from the Department of Electrical Engineering and Computer Science. He started his career designing custom ICs, circuit boards, and writing software. He changed over to Product Management (PM) in order to create a science-based approach to answering the question: "What will the Market buy and why?". He’s been in the enterprise security industry since 2007. He co-founded a cyber security company and was the PM for McAfee MVISION Insights, an innovative Cyber Defense-readiness prediction product. He has experience in Threat Intelligence, Endpoint/Network/Cloud Security, User Behavioral Monitoring (UBM), and Unifying Cyber Security and IT Operations.
Read more

Topics in this article:

BigFixComplianceCyberRiskCybersecurityFOCUSSecurity

Submit a Comment

Your email address will not be published. Required fields are marked *

* HCL provides software and services to the U.S. Federal Government through its partner Four, Inc. Please contact Four, Inc. at the U.S. Federal Government contact page.


bigfix
Automation | March 30, 2024
HCL BigFix: RBI Compliance Made Easy for Banks
HCL BigFix simplifies RBI compliance for banks. Patch all devices, manage software, and protect against vulnerabilities. Learn how HCL BigFix secures your financial data.
Uffe Sorensen
Cyril Englert
Solution Architect
bigfix
Automation | March 28, 2024
Managing Endpoint Compliance in Banking and Finance
HCL BigFix simplifies IT compliance for banks. Patch all devices and vulnerabilities, manage software and protect against cyber attacks. Learn how HCL BigFix secures your financial data.
Uffe Sorensen
Cyril Englert
Solution Architect
bigfix
Automation | January 31, 2024
Ensuring Cybersecurity Compliance and Resilience in the Public Sector
95% rise in public sector cyber attacks! Protect yourself with HCL BigFix. Automated compliance, proactive vulnerability detection, and rapid incident response. Learn more.
Uffe Sorensen
Angela Wood
Senior Marketing Campaign Manager
start portlet menu bar end portlet menu bar