runZero

Overview

runZero is a comprehensive cyber asset management solution to help provide visibility with a full asset inventory.  This assists in identifying assets that need to be managed and helps understanding of attack surface, gaps in security controls and cyber hygiene and remediation.  Asset identification is a vital component of a mature vulnerability management program and a requirement in systemwide IS-3 policy.

Deployment

Departments and Units can request onboarding to obtain access to an Organization within runZero containing the networks for which they are the primary network contact.  This will provide visibility into all assets within their network space.  Optionally, departments and Units can define Sites to classify assets for easier grouping (e.g. Servers, Labs, Buildings) within the runZero Dashboard.

System Requirements

A lightweight passive network "Explorer" must be deployed in a network segment with full visibility (through ACLs and firewall rules) of the explored subnets.  The Security Operations team can deploy a runZero departmental Explorer on a centrally-managed virtual machine, on behalf of a department/Unit, or departments/Units may deploy their own Explorer.  The Explorer runs routine Scans to gather information about the assets in the network segments it has access to.