Total visibility.

Focused Protection.™

Leading petroleum and natural gas company implements innovative vulnerability assessment method to improve accuracy and eliminate attack vectors

Founded in 1922 and headquartered in Argentina, our customer is a verti-cally integrated energy company engaged in the exploration and produc-tion of oil and gas. The company also transports, refines and markets gas and petroleum products.

SCANLESS VULNERABILITY ASSESSMENTFOR ACCURATE DISCOVERY WITHOUT DISRUPTION

Case Study

CHALLENGES RESULTS

• Inability to access accurate and timely vulnerability data

• Lack of network visibility

• Network disruptions caused by scanning

• High false positive rate

• Detected three times more vulnerabilities than tradi-tional active scanning

• Delivered accuracy rates close to 100 percent

• Provided an actionable prioritized list of the most critical vulnerabilities for remediation

• Eliminated attack vectors

2

Scanless Vulnerability Assessment | Case Study

The Problem

The company had relied on traditional scanning to assess vulnerabili-ties for years, but there were limitations. Scanning across the network infrastructure was a complex problem – it was unfeasible to scan some network segments regularly, so scans occurred only sporadically and infrequently. In addition, the scanning process disrupted network opera-tions and delivered high false positive rates, leaving the IT security team wondering how to prioritize risk and remediation.

Scope and Selection Criteria

Traditional vulnerability assessment was not working, and the organization was looking for an alternative solution that wouldn’t disrupt the network. The IT security team needed total network visibility and more accurate and timely vulnerability assessment.

Deployment

The organization implemented Skybox® Vulnerability Control to mature their vulnerability management program. With Skybox, the organiza-tion could continuously monitor both network changes and vulnerabil-ities across the entire network. This empowered the IT security team to determine when network changes would expose vulnerabilities and potential exploits. Equally important, the solution automated risk assess-ment, prioritizing critical vulnerabilities for remediation.

The organization now receives an automated, accurate and prioritized list of vulnerabilities without an active scan of the network hosts. Additionally, Skybox analyzes vulnerabilities and security controls within the context of the network to hone in on vulnerabilities that must be addressed immediately. This advantage has empowered the IT security team to take a proactive approach to security risk and gain greater efficiencies and accuracy with remediation efforts.

In addition, the IT security team reported nearly three times as many vulnerabilities compared to traditional active scanner results. More impor-tantly, accuracy was close to 100 percent.

The Solution

Advanced features of Vulnerability Control translate vulnerability data into actionable intelligence. Attack simulations give real-world context to the risk vulnerabilities pose to a unique network, helping teams quickly prioritize threats and tailor the response in a way that best fits their organization.

3

Scanless Vulnerability Assessment | Case Study

About Skybox Security

Skybox provides the industry’s broadest cybersecurity management platform to address security challenges within large, complex networks. By integrating with 120 networking and security technologies, the Skybox® Security Suite gives comprehensive attack surface visibility and the context needed for informed action. Our analytics, automation and intel-ligence improve the efficiency and performance of security operations in vulnerability and threat management and firewall and security policy management for the world’s largest organizations.

www.skyboxsecurity.com | info@skyboxsecurity.com | +1 408 441 8060

Copyright © 2019 Skybox Security, Inc. All rights reserved. Skybox is a trademark of Skybox Security, Inc. All other registered or unregistered trademarks are the sole property of their respective owners. 08222019

The Results

Vulnerability Control tackled the challenges presented by traditional scanning head on. The solution’s scanless vulnerability assessment capa-bilities captured vulnerability data on network devices and zones that traditional scanners may miss – all without network disruption. With near-perfect accuracy and timeliness, the solution fully automated the customer’s vulnerability management program from detection through assessment, prioritization and remediation. With on-demand vulnerability intelligence, the company was able to reduce risk and eliminate attack vectors quickly and accurately.