NeXpose Consultant Edition

NeXpose Consultant Edition has been specifically created to meet the comprehensive needs of larger security consultants and auditors. NeXpose Consultant Edition provides practically the same capabilities as NeXpose Enterprise while streamlining the usage model to single users with simpler deployment options.

NeXpose Consultant Edition provides consulting and auditing organizations with the end-to-end capabilities of a vulnerability assessment, regulatory compliance, policy compliance and remediation management solution that can be used for internal or third-party engagements.

NeXpose Consultant Edition scans Web applications, databases, networks, operating systems and other software products to locate threats, assess their risk to the environment, devise a remediation plan and provide clear reports on compliance with public and internal regulations and policies.

Designed to efficiently conduct vulnerability scans in client engagements, NeXpose Consultant Edition performs nearly 40,000 vulnerability checks against 1,500 devices, NeXpose Consultant Edition provides unsurpassed coverage of entire networks, helping your organization to work with end-clients to significantly reduce their security risks and confidently protect valuable digital assets.

NeXpose Consultant Edition delivers the following core capabilities:

• Unrivaled breadth of unified vulnerability scanning - supports single users to scan for over 12,000 vulnerabilities with nearly 40,000 vulnerability checks in networks, operating systems, Web applications and databases across a wide range of platforms for networks up to 1,024 IPs. Set up your own scan templates to quickly identify key security threats.
• Regular vulnerability updates - provides regular vulnerability auto updates without requiring any user interaction. Delivers immediate Microsoft Patch Tuesday vulnerability updates within 24 hours to stay current with the changing threat landscape.
• Customizable risk assessment - identify risk based upon how the vulnerability in one system affects another and customize the risk scoring system to fit your unique organizational requirements.
• Industry-first exploit exposure – leverages real exploit intelligence to perform risk classification.  As a result, large organizations with complex networks can make informed decisions and focus resources on remediating the most critical, exploitable vulnerabilities.
• Comprehensive compliance and policy checks - determine if your systems comply with corporate or regulatory policies such as PCI, HIPAA, NERC or FISMA.
• Robust predefined and customizable reports - Leverage dozens of out-of-the box reports and view executive dashboards to obtain instant insight into your security posture. Create additional reports on the fly. Easily export your findings into your own enterprise systems based on many available report formats and create distributed report alerts.
• Remediation guidance - fix vulnerabilities quickly and easily with the information provided in remediation reports.
• Accurate scan results - delivers accurate scanning results in less time with an expert system that follows an assessment process similar to that used by ethical hackers.
• Ticketing - manages the remediation workflow process with an internal ticketing system and integration to third-party systems to delegate remediation tasks to the analysts and administrators responsible for individual systems.
• Powerful administration management - supports centralized administration for geographically or organizationally dispersed network environments, role-based access for delegated administration and reporting and integrates with Active Directory and other repositories for role-based groupings.
• Extensive enterprise integration - integrate NeXpose with many third-party security, compliance and risk management solutions such as Archer, ArcSight, RedSeal, RSA and other solutions based on pre-built integrations and NeXose’s open API.
• Out-of-the box Metasploit integration - leverage a direct integration with Metasploit, the world’s leading open source penetration testing platform, to clearly identify, prioritize and remediate real security threats.
• Strong enterprise-class service and support offerings - benefit from many enterprise service and support options including prioritized support, dedicated Technical Account Managers, consulting and training offerings.
• Easily deployed as a software solution - deploy NeXpose Consultant Edition on your desktop or laptop.

Who should use the NeXpose Consultant Edition?

• Consultants and Auditors who require:
• • Out-of-the box compliance and configuration scanning capabilities
  • Network scanning abilities for medium-sized networks up to 1,024 IPs
  • A wide range of support options including dedicated SLAs
  • A single user license

Who should upgrade to the NeXpose Enterprise Edition?

• Consultants and Auditors should upgrade to NeXpose Enterprise Edition if they require:
• • Scanning abilities for more than 1,024 IPs
  • Flexible deployment models including appliances and managed services
  • Access for more than 1 user