• Nexpose
  • Overview
  • Features
  • Architecture & Open API
  • Try NeXpose
  • Buy NeXpose
  • System Requirements
  • Vulnerabilities Tested
  • NeXpose Information
• Solutions
  • Unified Vulnerability Management
  • Web Application VA
  • Database VA
  • Network & OS VA
  • Compliance Scanning
• Services
  • PCI Compliance Testing
  • Penetration Testing
  • Web Application Security Audits
  • Best Practices Consulting
  • Social Engineering
  • CISSP Seminar
  • NeXpose Training
  • Security Training
• Support
  • NeXpose FAQ
  • System Requirements
  • Support Form
  • Vulnerabilities Tested
  • Customer Center Login
• Security Center
  • Advisories
  • Vulnerabilities Tested
  • Compliance
  • White Papers & Articles
  • SSHredder Test Suite
• Company
  • Management
  • Customers
  • Partners
  • Press Room
  • Events
  • Contact
  • Careers
• Customers

• Advisories
• Vulnerabilities Tested
• Compliance
  • Education
  • Healthcare
  • Financial Services
  • Government
  • Merchants
  • Public Companies
• White Papers & Articles
• SSHredder Test Suite

Of further interest:

• Miami-Dade County Release
• Hillsborough County Case Study
• NeXpose Remediation Plan
• NeXpose PCI Executive Summary Report

Related services:

• Web Application Security Audit
• PCI Compliance Testing
• Penetration Testing

Government Agencies

Protecting Sensitive Government Information

Government networks contain a wealth of sensitive information that is more than tempting to hackers. FISMA, the Federal Information Security Management Act, requires that each federal agency develop, document, and implement an agency-wide risk-based information security program to provide security for the information and information systems that support the operations and assets of the agency. FISMA necessitates that agencies implement an information security program that includes periodic assessments of risk contained in information systems and policies and procedures to reduce those risks to an acceptable level. It is not sufficient to wait until an attack and hope your firewalls or IDS systems can stop them before they inflict serious damage. Agencies now must have a proactive plan to to improve the security of government information and reduce the risk that a vulnerable system can have on your environment.

How NeXpose Helps

NeXpose from Rapid7 can help your government agency implement FISMA requirements and demonstrate how you are complying with all of FISMA's requirements. NeXpose scans networks, operating systems, databases (for policy compliance), Web server applications, Lotus Notes and other software products to locate threats, assess their risk to the environment, and devise a remediation plan. NeXpose provides comprehensive vulnerability management and risk reporting from one integrated package, enabling broad asset protection for a minimum investment. Performing over 20,000 vulnerability checks against 1,500 devices, NeXpose provides unsurpassed coverage of your entire network, helping your government agency to significantly reduce security risks and confidently protect valuable digital assets.

NeXpose and FISMA - Rapid7 Security Consulting

Rapid7 Security Consultants offer services that can help you audit your environment and certify that your agancy complies with FISMA requirements. Our offerings include all aspects of network and infrastructure security assessment that provides a holistic plan that protects your agency's assets.

Our professional services offerings include:

• PCI Compliance Testing
• Penetration Testing
• Best Practices Consulting
• Social Engineering

Contact us to find out how Rapid7 can help you implement PCI for both online and offline transactions.

Copyright © 2001 - 2008, Rapid7, LLC. All Rights Reserved.

• Home
• |
• Nexpose
• |
• Solutions
• |
• Services
• |
• Support
• |
• Security Center
• |
• Company
• |
• Contact