SOURCE: Tripwire, Inc.

August 29, 2007 09:05 ET

Tripwire Achieves Security Certification From the Center for Internet Security

CIS Benchmarks Coupled With Tripwire Enterprise Help Ensure Continuous Compliance Across the Datacenter

PORTLAND, OR--(Marketwire - August 29, 2007) - Tripwire®, the recognized leader in configuration audit and control solutions, today announced that its Tripwire Enterprise 7 solution has been certified by the Center for Internet Security (CIS). This certification is based on Tripwire's ability to help companies achieve and maintain a known, trusted and secure system state, compliant with CIS Benchmark configurations. This achievement further demonstrates Tripwire's commitment to its customers by taking proactive measures to ensure that its products are on par with CIS's rigorous standards.

CIS Benchmarks are a set of technical standards that draw upon best practices published by The SANS Institute, the National Security Agency (NSA), the National Institute of Standards and Technology (NIST), and the U.S. Defense Information Systems Agency (DISA), as well as consensus guidance from CIS members and users. The CIS Certification program is distinguished from other IT certifications because CIS certified vendor tools support the consensus best practices movement.

"IT and security professionals are hard-pressed to continuously safeguard their IT infrastructures from both internal and external threats. Companies should be taking a more proactive stance to ensure all systems are (and remain) secure and compliant," said Clint Kreitner, president and CEO of CIS. "By earning these CIS certifications, Tripwire customers can be assured they will be in accordance with the security benchmarks defined by user consensus."

Tripwire Enterprise 7, released in July 2007, represents the first and only solution that is able to bring continuous IT operational, regulatory and security compliance to the data center. The solution brings immediate value by assessing configurations across the data center, ensuring the enterprise is in a known, trusted and compliant state. Tripwire Enterprise 7 is the only solution to marry the assessment of IT configurations with configuration change auditing to proactively assess enterprise risk and ensure efficient, compliant and secure IT operations.

"CIS Benchmarks are a fundamental element of many industry standards -- such as the Payment Card Industry Data Security Standard -- and should be applied as a foundation to effectively reach operational, security and regulatory compliance," said Dan Schoenbaum, senior vice president of marketing and business development at Tripwire. "This certification builds on our commitment to deliver a platform for continuous compliance across the data center by providing customers the ability to achieve and maintain the highest degree of confidence in their configurations across their IT infrastructure, helping organizations to effectively manage IT risk related to configuration changes."

Tripwire has received certifications for 15 CIS Benchmarks, including:

--  CIS Level 2 Benchmark for Windows 2000 Server v2.2.1
--  CIS Legacy Settings Benchmark for Windows Server 2003 Members Servers
    v1.2
--  CIS Enterprise Settings Benchmark for Windows Server 2003 Members
    Servers v1.2
--  CIS Specialized Security Limited Functionality Settings Benchmark for
    Windows Server 2003 Members Servers v1.2
--  CIS Legacy Settings Benchmark for Windows Server 2003 Domain
    Controllers v1.2
--  CIS Enterprise Settings Benchmark for Windows Server 2003 Domain
    Controllers v1.2
--  CIS Specialized Security Limited Functionality Settings Benchmark for
    Domain Controllers 2003 Members Servers v1.2
--  CIS Level 1 Benchmark for Cisco PIX v1.0
--  CIS Level 2 Benchmark for Cisco PIX v1.0
--  CIS Level 1 Benchmark for Cisco IOS v2.1
--  CIS Level 2 Benchmark for Cisco IOS v2.1
--  CIS Level 1 Benchmark for Solaris 10 v2.1.1
--  CIS Level 1 Benchmark for Red Hat Enterprise Linux v1.0
--  CIS Level 1 Benchmark for Oracle 9i/10g v2.0 (for Windows only)
--  CIS Level 2 Benchmark for Oracle 9i/10g v2.0 (for Windows only)
    

Tripwire has active plans to continue extending its platform support. As this support grows, Tripwire will continue to seek CIS certifications, with additional benchmarks already submitted for CIS review.

About The Center for Internet Security

The Center for Internet Security (CIS) is a non-profit enterprise whose mission is to help organizations reduce the risk of business and e-commerce disruptions resulting from inadequate technical security controls. CIS members develop and encourage the widespread use of security configuration benchmarks through a global consensus process involving participants from the public and private sectors. The practical CIS Benchmarks support available high level standards that deal with the "Why, Who, When, and Where" aspects of IT security by detailing "How" to secure an ever widening array of workstations, servers, network devices, and software applications in terms of technology specific controls. CIS Scoring Tools analyze and report system compliance with the technical control settings in the Benchmarks. The CIS Benchmarks and Scoring Tools are available for download free of charge to the Internet community from http://www.cisecurity.org/index.html.

About Tripwire, Inc.

Tripwire, Inc. is the recognized leader of configuration audit and control solutions, serving over 5,700 enterprises worldwide. Tripwire enables IT to control risk and increase operational efficiency through its advanced configuration audit and control solutions that assess, validate, detect and enforce configuration changes across the data center. Global enterprises rely on Tripwire to strengthen their compliance and security, reduce unplanned work, increase availability, and accelerate success with CMDB initiatives. Tripwire is headquartered in Portland, Ore. with offices in the UK and Japan. For more information visit: http://www.tripwire.com.

©2007, Tripwire, Inc. Tripwire is a registered trademark of Tripwire, Inc. All other marks are property of their respective owners. All rights reserved.

Contact Information