Detect and respond to malicious activity
BigFix Detect integrates attack detection with the broadest set of remediation capabilities into a single endpoint security platform. This has transformed the Endpoint Detection and Response (EDR) market. BigFix Detect goes beyond Indicator of Compromise (IoC) analysis by identifying Indicators of Attack (IoA’s) created by evasive behavior and malware during targeted cyber-attacks and Advanced Persistent Threats (APT’s). With a massive library of remediation packages this can drastically improve the effectiveness of your endpoint security and management programs.
Continuous policy enforcement and reporting
BigFix Compliance enforces continuous compliance with security policies throughout your organization for every endpoint both on and off the corporate network. It includes out-of-the-box support for most popular security benchmarks published by CIS, DISA STIG, USGCB and PCI-DSS. An intelligent agent on every endpoint monitors, enforces and reports on the security configuration status of the endpoints in real-time regardless of OS type or location. Any compliance drifts are reported instantly and can be remediated quickly, to reduce the overall security risks.
Software patching, distribution and provisioning
BigFix Lifecycle helps find and fix problems in minutes across all endpoints — fixed, mobile, physical and virtual. Discover, secure and manage hundreds of thousands of endpoints on more than 90 different OS versions within hours or minutes. In addition to ensuring that all of your systems are patched and secure, you can automate OS Migrations, query endpoints in real-time for the presence of malicious files, quickly install software, perform advanced automation or do simple remote control with just a few clicks. BigFix Query accurately identifies and inspects endpoints through a user-friendly web interface using simple, intuitive questions.
Audit authorized and unauthorized software
BigFix Inventory can dramatically reduce the time required to conduct a comprehensive software asset inventory for license reconciliation or compliance purposes. It provides valuable insight into what the organization owns — and what it has installed but does not own
— along with how often the software is being used. It supports better planning, budgeting and vendor license compliance, while mitigating security risk.
Automated patching with high first-pass success
BigFix Patch provides an automated, simplified patching process that is administered from a single console. It provides real-time visibility and enforcement to deploy and manage patches to endpoints, on and off the corporate network. Clients have reported seeing more than 98 percent first-pass patch success rates. The solution not only increases the effectiveness of the patch process, but also cuts operational costs and reduces patch cycle times keeping your endpoints secure.