Products & Releases

eEye Rolls Out Centralized End-To-End Vulnerability, Compliance Product

Retina CS 2.0 Management Console provides centralized vulnerability management across enterprises of any size
PHOENIX AZ — DEC. 7, 2010 — eEye Digital Security, a provider of IT security and unified vulnerability management solutions, today announced the availability of the Retina CS 2.0 Management Console and new add-on modules for configuration compliance, regulatory reporting and patch management. Retina CS 2.0 Management Console is a fully integrated, web-based security console that provides centralized vulnerability management across enterprises of any size. The new version provides advanced analysis and reporting capabilities that deliver actionable insight into security and compliance trends. Also new with this release are three optional modules that integrate with Retina CS to provide automated configuration auditing, compliance reporting and patch management. With Retina CS and the new modules, IT security teams can implement an end-to-end, fully automated vulnerability and compliance management process that closes compliance gaps, reduces vulnerability-driven risk and lowers security and compliance costs.

This latest version of Retina CS and the new add-on modules were developed to address the most urgent concerns in the market across company size and industry. Based on eEye research of 1,963 IT security professionals, those top concerns included inefficient regulatory compliance processes, time-consuming configuration auditing, disconnected patch management, and a lack of actionable security insight and analysis. Customers using Retina CS and the modules are successfully addressing these issues.

Retina CS 2.0: Centralized Vulnerability Management

Retina CS 2.0 was built on the foundation of the Retina Network Security Scanner, the industry’s most mature and effective vulnerability scanning technology. Retina CS is a fully integrated, web-based security console that provides centralized vulnerability management across the enterprise. The new version provides smart alerting, rules and groups to simplify vulnerability management across multiple assets and locations. Retina CS 2.0 is also packaged with a new advanced reporting engine, at no additional cost, that provides analytics and trending across the vulnerability lifecycle for multi-dimensional reports on assets, vulnerabilities, attacks and patches.

New Add-On Modules for Retina CS 2.0

• Regulatory Reporting Packs: Automated solutions to help navigate through the increasingly complex landscape of corporate policies, government regulations, and industry standards such as SOX, PCI, FISMA, and ISO, Retina CS regulatory packs include compliance reports that map vulnerability and configuration audits to mandates including PCI, HIPAA, SOX, GLBA, NIST, FERC/NERC, MASS 201, ISO, COBiT, and ITIL.

• Configuration Compliance Module: Through simple drag-and-drop functionality, IT security professionals can define and manage enterprise-wide security policies to help monitor compliance to industry and internally developed configuration benchmarks such as Microsoft, NIST, USBCG and DISA STIGs.

• Patch Management Module: Integrated, automated and agentless Windows patch management closes the loop on un-patched vulnerabilities. From a single console, users can integrate information from Regulatory Reporting Packs and the Configuration Compliance Module to prioritize patch management based on risk profile.

“Enterprises need to be especially vigilant when it comes to the full spectrum of the vulnerability management lifecycle. It’s no longer about just closing security gaps and eliminating attack vectors. Today’s enterprises must also answer to the demands imposed by regulatory compliance, ” said Andrew Hay, senior security analyst, the 451 Group. “To effectively address both vulnerability and compliance issues, organizations will need to deploy solutions that provide increased situational awareness and remediation capabilities whilst simultaneously providing insight into the status of organizational security and compliance objectives.”

“With this release, eEye delivers on its vision to reduce security cost and complexity with end-to-end unified vulnerability and compliance management. This year, we’ve invested heavily in engineering, research and development to reinvigorate an already top-notch company and solution suite. Our dedication to developing a product that serves the needs of the customer has resulted in the most advanced vulnerability and compliance management solution available,” said Kevin Hickey, eEye CEO. “This latest release is only the first step in our emergence as the end-to-end vulnerability and compliance management leader. We will continue to deliver on our security, compliance and cost reduction vision into 2011 and beyond.”

“Our enterprise and government agency customers deploy hundreds of applications across thousands of on-premise, remote and mobile computing endpoints. To keep ahead of vulnerabilities and compliance issues, they need solutions that automate the entire vulnerability management lifecycle,” said Marc Maiffret, eEye cofounder and CTO. “We’ve leveraged our customer, prospect and analyst relationships, and our world-class research and engineering team, to provide a solution that can identify vulnerabilities, report on them, and then close gaps through automated configuration, compliance, and patch management.”


Retina CS 2.0 and add-on modules are available now as either software or a hardware appliance. For more information visit

About eEye Digital Security

Since 1998, eEye Digital Security has made vulnerability management simpler, less expensive and more effective by providing the only unified vulnerability and compliance management solution that integrates assessment, mitigation and protection into a complete offering. With a proven history of innovation, eEye has consistently been the first to uncover critical vulnerabilities and prevent their exploit. eEye leverages its world-renowned research to create award-winning solutions that strategically secure critical IT assets and the data they hold. Thousands of mid-to-large-size private-sector and government organizations, including some of the most complex IT environments in the world, rely on

eEye solutions to protect against the latest known, unknown and zero-day vulnerabilities. See more at

Follow eEye Digital Security Twitter: Blog: LinkedIn: Facebook:

Editors' Choice
Evan Schuman, Contributing Writer, Dark Reading
Tara Seals, Managing Editor, News, Dark Reading
Jeffrey Schwartz, Contributing Writer, Dark Reading