April 16, 2024
Syxsense Unified Security and Endpoint Management

As threats develop and assault surfaces get extra advanced, firms proceed to battle with the multitude of instruments they make the most of to deal with endpoint safety and administration. This could depart gaps in an enterprise’s means to establish gadgets which can be accessing the community and in making certain that these gadgets are compliant with safety insurance policies. These gaps are sometimes seen in outdated spreadsheets which can be used to trace and handle asset stock, configurations, vulnerabilities, and extra. In the end, this will increase organizational threat whereas stifling effectivity and productiveness.

That is why unified safety and endpoint administration has gained floor, as famous in Gartner’s Hype Cycle for Endpoint Security, 2022. As a part of the market’s want to achieve a clearer, real-time image of their gadgets and safety posture, Syxsense launched its Enterprise platform final yr to handle the three key components of endpoint administration and safety: vulnerabilities, patch, and compliance. Based on Syxsense, unified safety and endpoint administration (USEM) is the reply to enabling groups to achieve management over the widespread use of non-public gadgets and the rising mobility of company-owned gadgets on the community.

With that in thoughts, they developed assist of cell gadgets along with conventional gadgets like desktops and laptops, primarily based on a Zero Belief framework for person and device-based entry to assets that is straightforward to make use of. This provides groups the power deal with endpoint administration and safety operations from a single platform.

We not too long ago took a better take a look at the Syxsense Enterprise platform.

First issues first

Syxsense’s platform: What it’s essential know earlier than diving in:

  • A 14-day free trial is obtainable and trial customers have entry to Syxsense Enterprise, with options like Zero Belief and MDM out there which you could check with your personal gadgets.
  • Cortex automation engine: Whereas many different options supply strategies for detecting vulnerabilities, Syxsense Enterprise gives computerized remediation of these vulnerabilities. The automation is thru a drag and drop interface that does not require any coding and helps job and workflow sequencing and coverage implementation. Quite a few widespread workflows have already been constructed out and you may run them in your gadgets with out having to arrange the automation by yourself.

To facilitate this product assessment, the workforce at Syxsense gave us entry to the newest model of their platform. This is what we discovered:

Getting Began

Utilizing the Syxsense platform, safety groups can achieve visibility into their surroundings and uncover the endpoints speaking over the community. As an instance I am a system administrator desirous about attempting the service. That is the primary display screen I see. Within the nook it reveals the place I can simply Add Units so I do know the place to begin and I can see the dashboards the place info on the gadgets I add will show.

After I go so as to add a tool, it reveals me the supported machine sorts and the downloadable agent for every kind. I additionally see the Discovery Agent the place I can discover and add a number of gadgets which have the agent downloaded already.

Unified Security and Endpoint Management

Utilizing the gadgets I simply added to my stock, I can check what the platform can supply.

Unified Security and Endpoint Management

The ‘Units’ button on the left facet panel reveals you all of the gadgets which have already been added to your stock.

What caught my consideration was the little circle subsequent to the machine title. The inexperienced, orange, or crimson shade of the circle signifies the present well being of the machine primarily based on patch standing and lively vulnerabilities so you’ll be able to see the well being of your gadgets at a look.

Unified Security and Endpoint Management

By proper clicking “Queries”, now you can entry the Question Designer and filter your gadgets with totally different attributes you choose.

For a pattern, I ran a question for all gadgets working Home windows OS. After you run the question, you’ll be able to carry out duties on the gadgets returned out of your choice.

Unified Security and Endpoint Management

Within the Syxsense Enterprise platform, you could have entry to tons of several types of duties, together with: Safety Scan, Patch Deploy, Software program Deploy or Safety Remediation. I made a decision to run a patch deployment to see what would occur.

Unified Security and Endpoint Management

As you’ll be able to see, the console reveals you six steps to stipulate the patch deployment job I need to carry out, beginning with figuring out the checklist of gadgets the duty will goal. I created a brand new question for gadgets with vital patches.

After I chosen my question, Syxsense confirmed me a set of choices for managing the content material deployed to the focused gadgets.

Unified Security and Endpoint Management

I can instantly deploy my patch or, if I do not need to run the duty proper now, the platform provides me choices for scheduling my deployment. I can deploy at a specified time with a calendar choice or make the duty reoccur on a schedule.

After I ran the patch deployment job, it was straightforward to see which gadgets have been missed. I can then select to rerun the duty on new gadgets or gadgets that have been unavailable through the deployment window.

What caught my consideration subsequent is the Cortex workflows.

Unified Security and Endpoint Management

You possibly can construct sequences of various safety actions that run mechanically primarily based on the standing of focused gadgets. I added a number of paths for the automation to comply with primarily based on the success or failure of every motion.

It is easy to make use of. I did not want to put in writing any code, the platform is designed so you’ll be able to simply drag and drop actions into the builder and customise them as you construct. There’s additionally fairly a couple of server upkeep workflows already constructed on the platform that I can simply choose and run immediately.

I chosen the Zero Belief Trusted – Safety workflow and named it “Safety Posture”.

Unified Security and Endpoint Management

As soon as I’ve configured the workflow, I can select the gadgets I need to run it on and the way usually.

My job was to check the system, so I needed to see how effectively the platform handles reporting on the totally different actions I’ve carried out. Within the Syxsense platform, you’ll be able to deploy a job to run a report.

The platform gives a number of choices for stories. There’s even stories for HIPAA, PCI and SOX compliance.

Unified Security and Endpoint Management

I resolve to run the “HIPAA Working System and Software Vulnerability Scan” report.

It provides me a number of info and there is a abstract part that reveals me the share of patch compliance and graphs for compliance by severity and compliance by CVSS. That is an attention-grabbing report with an in depth overview of your environmental compliance, with nice visualizations already inbuilt.

Unified Security and Endpoint Management

Conclusion

Syxsense Enterprise is a strong endpoint administration and safety platform with many options to make day-to-day IT and safety operations simpler. Many firms depend on a number of instruments to deal with vulnerability scanning, patch administration, configuration administration, cell gadgets, and remediation, however Syxsense combines it multi function resolution. It is simple to see the place a single resolution like Syxsense may scale back prices and threat whereas bettering effectivity.

If you would like to see extra, you’ll be able to join a demo of Syxsense here.

Discovered this text attention-grabbing? Comply with us on Twitter and LinkedIn to learn extra unique content material we submit.