Our security audits checks security policies, configuration settings, and discovers other information about the host such as anti-virus status, application versions, security patches, user accounts and more. The policy settings are automatically compared with consensus benchmarks from the Center for Internet Security (CIS), which allow IT managers to automatically determine the security status of their IT assets in advance of an attack.

Why are configuration benchmarks important for IT security? Many current threats are not stopped by perimeter security systems such as firewall and anti-virus systems. Setting and monitoring configurations based on consensus benchmarks is a critical step because this is a pro-active way to avoid many successful attacks. The U.S. National Security Agency has found that configuring computers with proper security settings blocks over 90% of the existing threats.