FISMA News

PatchLink Extends Proven Enterprise Solution to Government Agencies by Meeting Stringent Standards

(June 05, 2007) -- PatchLink Corporation, provider of security and vulnerability management solutions, announced that STAT Guardian Vulnerability Management Solution (VMS) has achieved Evaluation Assurance Level Two (EAL2+) certification under the Canadian Common Criteria Evaluation and Certification Scheme (CCS). The comprehensive assessment was conducted by Electronic Warfare Associates-Canada, Ltd., an internationally recognized third-party evaluation service that determines the trustworthiness of Information Technology (IT) security products. PatchLink VMS is proven to comply with one of the highest government standards worldwide, making it the only integrated vulnerability management platform certified under Common Criteria.

Government agencies are under increasing pressure to improve security. For example, the Federal Information Security Management Act (FISMA) imposes a mandatory set of processes that must be followed for all information systems used or operated by a U.S. Government federal agency or by a contractor or other organization on behalf of a U.S. Government agency. Agencies are rated on annual tests of information security, whether they certify and accredit their systems as secure, how well they manage the configuration of their computers, how they detect and react to security breaches, their training programs, and the accuracy of their inventories. In 2006, the government got a C- grade, which actually is up slightly from the last three years when it received a grade of D+, D+, and D. By achieving Common Criteria status, VMS will now be able to help agencies mitigate risks, comply with stringent regulations and eliminate threats.

"With the proliferation of threats and targeted attacks, it is essential that organizations, especially those in the government sector, can easily establish and enforce global security policies to ensure they remain compliant and protect their networks," said Steve Antone, vice president of federal solutions at PatchLink. "With more than 3,400 customers worldwide, PatchLink is effectively securing enterprises and reducing business risk across the globe. This certification further validates our proven solution and will enable us to address the growing needs of government agencies."

PatchLink's VMS underwent rigorous testing that formally approved it as the only integrated solution on the internationally recognized Centralized Certified Product List. With this status, PatchLink's VMS will meet the needs of more sophisticated customers, including the U.S. Department of Defense (DoD), U.S. Army, Navy, and Air Force Information Assurance Vulnerability Management (IAVM).

Share or bookmarklet this web page at: