Tripwire announced that its newest product, Tripwire Enterprise for VMware ESX Server, received the Center for Internet Security (CIS) certification for its VMware ESX Server security benchmark. This certification is based on Tripwire's configuration assessment capabilities that help companies achieve and maintain a known, trusted and secure VMware ESX Server configuration state compliant with CIS Benchmark recommendations.

CIS Benchmarks coupled with Tripwire Enterprise help ensure continuous compliance across the datacenter. In fact, research and case studies show that 80-95 percent of known vulnerabilities are blocked by the technical security controls and actions recommended in the consensus benchmarks.

"As the popularity of virtualization grows, it is imperative that IT operations and information security work closely together from the start to ensure the security of this new environment," said Dave Shackleford, Vice President of CIS. "This was the driving force behind our new VMware Server benchmarks and we are pleased to see Tripwire integrating these new policies into its solution, allowing IT and security professionals to proactively safeguard their virtual infrastructure on a continuous basis."

CIS Benchmarks are a set of technical standards that draw upon best practices published by The SANS Institute, the National Security Agency (NSA), the National Institute of Standards and Technology (NIST), and the U.S. Defense Information Systems Agency (DISA), as well as consensus guidance from CIS members and users. The CIS Certification program is distinguished from other IT certifications because CIS certified vendor tools support the consensus best practices movement.

About Tripwire Enterprise for VMware ESX Server
Announced today, Tripwire Enterprise for VMware ESX Server brings value by assessing VMware ESX Server configurations, ensuring they are securely implemented. In addition to the CIS benchmark policies, Tripwire agentlessly provides continuous compliance assessment against operational and regulatory standards through custom configuration assessment policies that allow customers to proactively manage their configurations. Tripwire uniquely marries all its policies with the ability to detect changes to IT infrastructure, alerting IT to configuration changes that are not in compliance, to ensure control of the virtual environment.

Tripwire has received more CIS benchmark certifications than any other, and was the first company to achieve certification of the VMware ESX Server benchmark. "Tripwire is committed to continuously extend its market leadership by delivering the broadest platform of assessments for security, compliance and IT operations," said Dan Schoenbaum, senior vice president of marketing and business development at Tripwire. "The new Tripwire benchmark for VMware ESX Server builds on our rapidly increasing foundation of nearly 100 policies, providing customers with the ability to achieve and maintain the highest degree of confidence in their configurations across heterogeneous systems, helping organizations to effectively manage configuration-related IT risk."