Federal Solutions

Know your FDCC compliance and more. Now.

The SecureFusion software suite from Gideon Technologies is the first fully SCAP-compatible compliance framework tool. SecureFusion integrates the discovery of assets, vulnerability management, configuration management and policy management in a single, easy to deploy, easy to manage package.

SecureFusion can discover every asset connected to your network, scan the appropriate assets for compliance with the Federal Desktop Core Configuration (FDCC) standard, and provide a centralized portal for continuous measurement and reporting against many other standards as well. For most agencies, SecureFusion can accomplish all this in less than 48 hours! The SecureFusion platform becomes the solution through which your agency can measure progress against compliance standards in an automated and 100 percent agent-less way.

How does it work?

SecureFusion’s core abilities mirror the objectives of NIST’s Secure Content Automation Protocol (SCAP), a method for using specific standards to enable automated vulnerability management, measurement and policy compliance evaluation.

SecureFusion is the first compliance framework to achieve SCAP compatibility and provide agencies with an accurate, continuous and automated measurement of compliance requirements. SecureFusion integrates four critical SCAP-compliant functions, including:

• SecureFusion Asset Discovery – rapidly discovers and inventories all networks and network assets, including managed and unmanaged devices.
• SecureFusion Configuration Management – maintains an accurate inventory of system configurations, including technical controls, software, user accounts and system changes.
• SecureFusion Vulnerability Management – conducts ongoing vulnerability detection and reporting for operating systems, infrastructure, network applications and databases.
• SecureFusion Policy Management – continuously evaluates system configuration and compliance with standards and policies.

All four agent-less modules continually funnel information into the centralized SecureFusion Portal, enabling a streamlined, automated and end-to-end measurement process—from asset discovery to reporting and workflow.

Large government entities rely on SecureFusion to automatically measure IT security and compliance with government policies and standards, including:

• Federal Information Security Management Act (FISMA)
• Federal Desktop Core Configuration (FDCC)
• Certification and Accreditation (C&A)
• National Institute of Standards and Technology (NIST) 800 Series

Achieve FDCC Compliance Quickly and Easily

We understand that measurement of FDCC compliance is a critical obligation that must be met by February 1, 2008. Baseline configuration measurement against NIST 800 standards is also a top priority for government agencies. We can help you understand your current state, report on your compliance, and measure your progress towards remediation quickly, easily and continuously.

Government agencies will find SecureFusion listed as a SCAP-compatible tool under the Compliance Framework, Network Framework and Vulnerability/Configuration Scanners categories on the National Vulnerability Database Web site at http://nvd.nist.gov/scapproducts.cfm.

View a Demonstration of SecureFusion

Our online demonstration walks you through the SecureFusion Portal, populated with actual data from asset discovery, vulnerability management, configuration management and policy management.
View the demo here.

For More Information

Please contact us for more information about SecureFusion. Our team will work with you to understand your requirements and provide a detailed proposal that addresses your needs.