Part of the glamorous life of an ASV involves a rigorous Quality Assurance program to ensure that we are the best ASV's we can possibly be. Some of those efforts are not as readily apparent to our clients as others; but on some occasions, we like to share when our work directly benefits those who trust Coalfire to help reduce their risk and simplify compliance.
Coalfire partners with Rapid7 to provide accurate, reliable vulnerability scans using Rapid7’s Nexpose vulnerability management software. While we do enjoy their company at industry events and so on, we also work hard together to ensure the services we offer to our clients meet the high standards of quality that are associated with our companies’ names.
A recent effort to minimize the number of False Positives affecting our clients has proven quite successful. Over several months, we combed through available data and found a number of potential Microsoft vulnerability checks, seen below, that looked like they could be improved. The very talented engineers at Rapid7 sprang into action and worked diligently to increase the accuracy of those checks, listed below:
We are very pleased to announce that the efforts of both of our teams have proven successful. We say this with great confidence as the changes were implemented several months ago and monitored closely thereafter to ensure we had the numbers to back up our claim of improved accuracy.
Our clients may already have noticed a reduction in the number of False Positives showing up when scanning their Microsoft devices. As stated above, this is no coincidence, but a very deliberate effort from two companies working together to bring the best product to market possible.
We have no intention of resting on our laurels, however. Quality Assurance is a continuous process, and one that we prefer to be data driven. Keep an eye on our blogs for future announcements and expert advice from your trusted friends in the vulnerability management world at Coalfire!