Product teams should be like restaurants with open kitchens.
Rather than bring your next meal or software update from behind a mysterious curtain, we’d like to give you a sneak peek into what we’re up to. So here are a few things you can expect in an upcoming release:
Sensor Deployment Behind a Web Proxy: Support organizational requirements that traffic be directed through a proxy and not directly to a device on your internal environment by allowing the USM Anywhere Sensor to be deployed behind a web proxy.
Customer REST API: Provide a documented Customer REST API so that customers can access USM Anywhere data directly through URL paths, enabling automation, integration and reporting outside of the USM Anywhere UI.
User Permission Restrictions: Allow you to create USM Anywhere users with limited ability to make configuration changes, in order to provide auditors, contractors and other non-administrative personnel with restricted access to the UI.
ISO 27002 Reports: Enable organizations that need to comply with International Organization for Standardization (ISO) requirements by providing predefined views
that map to specific ISO27002 requirements.
Unauthenticated Vulnerability Scans: We plan to provide an alternative method of vulnerability scanning that does not require entering asset credentials.
Improved Docker Container Support: USM Anywhere can currently collect logs from applications running within a Docker container in AWS deployed using the Amazon EC2 Container Service (ECS) using AWS CloudWatch to aggregate the logs from each container. But we are looking to improve our Docker support through a direct integration with the Docker API which will provide additional information about the containers themselves.
HIPAA Reports: Enable organizations that need to comply with Health Insurance Portability and Accountability Act (HIPAA) requirements by providing predefined views that map to specific requirements. (Delivered in the 2017-08-14 Update)
NIST Cybersecurity Framework (CSF) Reports: Provide a set of out-of-box reports based on the NIST Cybersecurity Framework (NIST CSF). NIST CSF provides a policy framework of computer security guidance for how private sector organizations can assess and improve their ability to prevent, detect, and respond to cyber attacks. (Delivered in the 2017-08-14 Update)
Improved AlienVault Open Threat Exchange™ (OTX) Integration: Enable USM Anywhere to evaluate incoming Events against the latest Indicators of Compromise (IOCs) synchronized from your OTX account. (Delivered in the 2017-07-25 Update)
Azure Web Apps Support: Enable you to monitor Azure Web Apps, a service which allows developers to quickly build websites and web apps in Azure. (Delivered in the 2017-07-25 Update)
Predefined Views for PCI DSS: Assist organizations that need to comply with Payment Card Industry Data Security Standards (PCI DSS) by providing predefined views that map to specific requirements.(Delivered in the 2017-06-20 Update)
Improved Vulnerability Management: Enable you to better track vulnerabilities by being able to apply labels to show status, for instance, to indicate if a vulnerability is open or has been remediated. (Delivered in the 2017-06-13 Update)
G Suite (formerly Google Apps) Integration: Allow you to monitor user activity in Google Apps including logins and file updates. (Delivered in the 2017-04-25 Update)
Office 365 Integration: Allow you to monitor user activity in the Microsoft Office 365 suite of cloud applications, including Exchange, SharePoint, OneDrive, and Azure Active Directory. (Delivered in the 2017-04-04 Update)
Alarm Notification Link to More Details: Support a link in alarm notification to a product page that you can login to for more details. (Delivered in the 2017-03-27 Update)
Alarm Labels: Support better alarm management by allowing you to create and apply labels to indicate status or assignment. (Delivered in the 2017-03-27 Update)
Improved Group Credentials: VMs and instances come and go in cloud environments, so we plan to make it easier to manage credentials for dynamic Asset Groups used for authenticated asset scans. This will enable automatic assignment of Asset Group credentials to Assets that join the Group after the credentials were assigned. (Delivered in the 2017-03-27 Update)
Disclaimer:AlienVault considers various features and functionality prior to any final generally available release. As such, comments given in this forum are not (nor should they be interpreted to be) a commitment from AlienVault that it will deliver any specific feature or, if it delivers such feature, any time frame when that feature will be delivered. AlienVault is always trying to improve and enhance its products. All discussions herein are based upon product team current interests, and product team plans and priorities can change at any time.