ForeScout CounterACT: The Smart Approach to …docs.govinfosecurity.com/files/whitepapers/pdf/722_ForeScout... · The Smart Approach to Command Cyber Readiness Inspections (CCRI)

ForeScout CounterACT: The Smart Approach to Command Cyber Readiness Inspections (CCRI)

Whitepaper

ContentsINTRODUCTION 1

CCRI OVERVIEW 2

CCRI ADHERENCE CHALLENGES 3

EXPEDITING CCRI USING ENDPOINT COMPLIANCE AUTOMATION 4

FORESCOUT COUNTERACT FOR CONTINUOUS ENDPOINT COMPLIANCE 5

Asset Discovery and Pro!ling 6

8

Post-connect Protection 10

HOW FORESCOUT ADDRESSES CCRI CRITERIA 12

FORESCOUT CCRI SOLUTION BENEFITS 13

CASE STUDY: IT GOVERNANCE USING DISA STANDARDS 14

CONCLUSION 14

ADDITIONAL REFERENCES 15

Industry Whitepaper ForeScout CounterACT: The Smart Approach to Command Cyber Readiness Inspections (CCRI)

Introduction


CCRI Overview


CCRI Adherence Challenges

updated guidelines.


Figure 1: Endpoint compliance lifecycle

Expediting CCRI using Endpoint Compliance Automation

»

agents installed or running. »

endpoint technologies. »

»

and correctly con!gured. »

»

detect unauthorized devices such as rogue access points. »

»

»

» Discover

» Assess

phase. » Allow


» Remediate

» Protect

» Report

ForeScout CounterACT for Continuous Endpoint Compliance

ForeScout CounterACT is a virtual or physical appliance

provides 802.1X and alternative authentication technologies,


Asset Discovery and Pro!ling

Figure 2: CounterACT’s industry leading asset inventory


Compliance Assessment

» » » » » » » » »

Figure 3: Compliance assessment showing unauthorized processes


Access Control – Allow, Limit or Block

Figure 4: CounterACT’s hybrid mode


Endpoint Remediation

Figure 5: CounterACT compliance checks and remediation actions


Post-connect Protection

Figure 6: Detecting post-connect posture changes


Compliance Reporting

Figure 7: CounterACT compliance reporting


How ForeScout Addresses CCRI Criteria

CCRI CRITERIA FORESCOUT COUNTERACT

Visibility and Asset Management

»

»

installed on it.

Authentication and Access Control

»

»

handling controlled unclassi!ed and classi!ed

»

»devices, services and technologies use only

»

Compliance Assessment and Remediation

»

»

»

»

»

security posture. »

DoD Standard Security Con!guration »


CCRI CRITERIA FORESCOUT COUNTERACT

Compliance Assessment and Remediation(continued)

»

»

» Ensure access is only provided to personal

latest security patches, virus protection

anti-virus signature !les installed. »

Post-connect Monitoring and Protection

»

DoD operations or IT resources, including

»

post-connection. It also detects security posture

Compliance Noti!cationand Reporting

»

»

inventory.

ForeScout CCRI Solution Bene!ts

» » »

directives:

» Active Asset Intelligence

» Policy-based Access Control


» Continuous Monitoring

» Automated Remediation

applications or peripherals. » HBSS Integration

» IAVA Compliance

» Compliance Reporting

» Guest Access

» Mobile and Wireless Controls

»

» IT Interoperability

» Cost Savings

» » » »

Case Study: IT Governance using DISA standards

»

»

»


»

»

»

endpoint.

Conclusion

Additional References

» » » »


ForeScout Technologies, Inc.

Documents

ForeScout CounterACT: The Smart Approach to …docs.govinfosecurity.com/files/whitepapers/pdf/722_ForeScout... · The Smart Approach to Command Cyber Readiness Inspections (CCRI)