Continuous policy enforcement and reporting
BigFix Compliance enforces continuous compliance with security policies throughout your organization for every endpoint both on and off the corporate network. It includes out-of-the-box support for most popular security benchmarks published by CIS, DISA STIG, USGCB and PCI-DSS. An intelligent agent on every endpoint monitors, enforces and reports on the security configuration status of the endpoints in real-time regardless of OS type or location. Any compliance drifts are reported instantly and can be remediated quickly, to reduce the overall security risks.
Software patching, distribution and provisioning
BigFix Lifecycle helps find and fix problems in minutes across all endpoints — fixed, mobile, physical and virtual. Discover, secure and manage hundreds of thousands of endpoints on more than 90 different OS versions within hours or minutes. In addition to ensuring that all of your systems are patched and secure, you can automate OS Migrations, query endpoints in real-time for the presence of malicious files, quickly install software, perform advanced automation or do simple remote control with just a few clicks. BigFix Query accurately identifies and inspects endpoints through a user-friendly web interface using simple, intuitive questions.
Audit authorized and unauthorized software
BigFix Inventory can dramatically reduce the time required to conduct a comprehensive software asset inventory for license reconciliation or compliance purposes. It provides valuable insight into what the organization owns — and what it has installed but does not own
— along with how often the software is being used. It supports better planning, budgeting and vendor license compliance, while mitigating security risk.
Automated patching with high first-pass success
BigFix Patch provides an automated, simplified patching process that is administered from a single console. It provides real-time visibility and enforcement to deploy and manage patches to endpoints, on and off the corporate network. Clients have reported seeing more than 98 percent first-pass patch success rates. The solution not only increases the effectiveness of the patch process, but also cuts operational costs and reduces patch cycle times keeping your endpoints secure.