Review: ISS Proventia Network

By

The ISS Proventia Network Enterprise Scanner is part of a larger security management system and, as such, shows its best performance as part of that suite. We tested the product outside of the Proventia suite and we do not recommend this approach. The network scanner requires, at minimum, MS SQLServer and ISS Site Protector to support it. If all you need is a vulnerability scanner, this is not your best bet.

For: Highly customisable, powerful part of the Proventia suite.
Against: Difficult to implement, not effective as a standalone vulnerability scanner.
Verdict: If a vulnerability scanner or penetration tool is all you are looking for, keep looking. If you have or are planning to implement the Proventia suite, this is a powerful and flexible addition and should be included in your plans.

Review: ISS Proventia Network
Implementation of Proventia is not trivial. However, it is a powerful system when properly deployed. The suite, and thus the Network Scanner, uses the ISS Site Protector as a console, centralised management and correlation dashboard. We found that the use of a single product, such as Network Enterprise Scanner, out of the context of other products in the Proventia suite, does not allow the product to reach its potential.

Network Enterprise Scanner is highly customisable with significant policy granularity and both active and passive scanning. When used with the Proventia IPS, the device enables blocking based on known vulnerabilities. The scanner performs automatic discovery of devices on the network and recognises virtually any device likely to be there.

We had difficulty getting the product to communicate properly with Site Protector and we do not recommend this for trivial applications. Once the device is in place and configured, operation is much easier, but getting it working initially requires a serious understanding of it, Site Protector, SQLServer and your network in general.

Documentation consists of a quick-start card that we found was not adequate to the job of installing the product. Other documentation is available online but, although it is extremely comprehensive, we found it somewhat cumbersome to use.

There is a customer support portal, and toll-free phone support also is available. Network Enterprise Scanner’s value is hard to calculate. At US$7,250 it certainly is not expensive. However, the requirement for MS SQLServer and Site Protector, with accompanying hardware, push the price up, as does support and, most especially, management. Again, in the context of the overall Proventia suite this is a good buy. Alone, it is not.
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
assessmentsecurityvulnerability

Sponsored Whitepapers

Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Futureproof Your Business with Datacom, Microsoft, and AMD Ryzen™ AI PCs
Futureproof Your Business with Datacom, Microsoft, and AMD Ryzen™ AI PCs
See everything. Do more.
See everything. Do more.

Events

Most Read Articles

NSW Police to embark on $126m IT overhaul

NSW Police to embark on $126m IT overhaul
Victoria's first government tech chief steps down

Victoria's first government tech chief steps down
SA Water plans 'once-in-a-generation' core technology uplift

SA Water plans 'once-in-a-generation' core technology uplift
CBA looks to GenAI to assist 1200 'security champions'

CBA looks to GenAI to assist 1200 'security champions'
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?