BigFix Compliance

Solution Overview

Continuously monitor and enforce endpoint security configurations to ensure compliance with regulatory or organizational security policies using out-of-the-box compliance checklists.

BigFix Compliance

BigFix Compliance to deliver continuous policy enforcement and reporting and allow continuously monitor and enforce endpoint security configurations to ensure compliance with regulatory or organizational security policies.

BigFix Compliance can reduce the costs and complexity of IT management as it increases business agility, speed to remediation and accuracy. Its low impact on endpoint operations can enhance productivity and improve the user experience. 

Security Configuration Management

Ensure continuous endpoint configuration compliance with effective remediation of configuration drifts. Supports security benchmarks published by CIS, DISA STIG, USGCB, and PCI DSS.

Patch Management

Deploy patches to distributed and virtual endpoints using Windows, UNIX, Linux and MacOS operating systems and third-party vendors, including Adobe, Mozilla, Apple, and Oracle – regardless of location, connection type or status.

Correlate and Analyze Data

Import and correlate business context, security status, or user data from other solutions to enable deeper analytics or render a more comprehensive endpoint posture.

Integrate Across the Enterprise

Radically simplify IT and security operations by collecting, transforming and integrating your enterprise’s endpoint, security and operations data.

Device Discovery

Scan your entire network to identify all IP-addressable devices for pervasive visibility and control with minimal network impact.

Compliance Analytics and Reporting

Collect, aggregate, and report on security configuration, patch and vulnerability compliance status of all endpoints against deployed policies. Track vulnerabilities, status and trends to identify security exposures and prioritize remediation.

Features Overview

Pass audits and avoid fines with continuous compliance and configuration management. Accurate and real-time visibility and continuous enforcement of security configurations and patches to address configuration drifts. Security and compliance analytics identify, manage and report on policy exceptions and deviations. Out-ot-the-box, the software supports security benchmarks such as CIS, DISA STIG, USGCB, and PCI-DSS. It also shows trending and analysis of security configuration changes. The BigFix intelligent agent provides continuous compliance with automated audit cycles measured in minutes rather than weeks.

Improve visibility and reduce risk with device discovery and patch management. Support a large variety of endpoints including cloud, server, and desktop devices, as well as specialized equipment such as point-of-sale (POS) devices, ATMs and self-service kiosks. The device discovery capabilities find all endpoints that you know about as well as previously unknown endpoints in your environment. You can even quarantine endpoints that are out of compliance. Plus, it’s easy to deploy patches to distributed and virtual endpoints using multiple versions of the top twelve operating systems (e.g. Windows, UNIX, Linux and MacOS etc.), as well as third-party applications and policy-based patches – regardless of connection type or status.

Prioritize remediation with compliance analytics and reporting. Track the effectiveness of compliance efforts and quickly identify security exposures. Endpoint compliance status vs deployed policies is continuously collected, aggregated and reported on using a powerful Compliance Analytics Engine. Multiple reports are available out-of-the-box on security configurations, patching and vulnerabilities – showing current and historical trending – for entire deployments or for a single endpoint.


Report how vulnerabilities have been remediated to demonstrate compliance with regulatory or organization policies and pass audits more easily.

Real-time enforcement of security policies across all endpoints, regardless of their network connection status

Maximize remediation impact to vulnerability posture by understanding current status, historical trend and details of vulnerabilities on each endpoint and across the environment.

Quarantine endpoints that are out of compliance and manage endpoint patching across operating systems and software applications to stay current and improve security posture.

Quickly visualize risk as well as costs while easily finding the endpoint issues that matter most.


●Ensure continuous configuration compliance using thousands of out-of-the box security controls based on industry best practice security benchmarks with automated remediation and reporting
●Analyze and report on policy compliance status and trends and identify endpoint security exposure and risks
●Manage and distribute patches to all endpoints for a variety of operating systems and software applications
●Monitor and manage the status and health of various third party endpoint protection clients such as anti-vir us and anti- malware tools
●Perform all security assessment, remediation, and reporting using a single multipurpose, intelligent agent on each endpoint
● Manage hundreds of thousands of endpoints, physical and virtual, regardless of location, connection type or status, all from a single management console

E-SPIN Value Proposition

E-SPIN being active in the business of enterprise technology from network to system, and application consultancy, network/system integration, project management, training and maintenance support for customers and partners across the region since 2005. With IBM selling the BigFix business in 2019, E-SPIN is starting the business with HCL to make sure all the active and new customers are being able to properly take care of the solution, project and post warranty and maintenance. Feel free to contact E-SPIN for your project and operation requirements.