Automate Ports, Protocols, and Services Management (PPSM) with OpenRMF Professional

Automate the tracking and management of ports, protocols and services for your network with ACAS scans and OpenRMF Professional.

PPSM Listing automated through ACAS scans and OpenRMF Professional

Automatically Track PPSM through your Scan Results

But did you know there is other very valuable information in these scans? The ports, protocols, and services (i.e. PPSM where “M” is management) that are running is captured in each server scanned. And this information is contained in the .nessus files your administrators and/or security team can export from ACAS.

Why not use this information to automate the tracking and documenting of PPSM data to make your job easier! That is where OpenRMF Professional comes in. OpenRMF Professional v2.2 released April of 2021 includes automating the PPSM, hardware listing, and software listing contained in these .nessus files and helps you list and track that information. You can use this PPSM data for your system ATO package / ATO package documentation and artifacts.

You can also track the boundaries that the PPS crosses inbound or outbound in OpenRMF Professional. And it saves the version history of items so you know when it changed as far as the date, time, reason, and who did it. History tracking and auditing are built in to almost every aspect of what OpenRMF does.

As you upload the latest ACAS scans over time (Continuous Monitoring) and things change, OpenRMF updates your data for you and tracks PPSM as well as any newer devices found from your scan. Built in notifications let your team know when a new scan is updated and when PPSM data changes.

Ease PPSM Reporting and Data Calls

It enables you to proactively scan all your PPSM data and look for anomalies or ports that should not be open.

It lets you look for services that should be removed or disabled.

And it does it in an easy interface that is web-based, audited, and tracked for history and configuration management purposes.

Quickly search by port, protocol, and/or service as well as boundary information

OpenRMF Professional v2.2 (the software pitch)

Having a web-based central repository for all RMF data that has role-based security for each system, eases the RMF process using a single source of truth and eliminates errors, manually intensive individual tracking, and rework. It also provides leadership with direct insight into the status of all system security and risk information thus eliminating the mystery around implementing the RMF process.

Once an ATO is achieved, OpenRMF continues with continuous monitoring and tracking of POA&M items, overall risk of systems and applications, and tracking updated scans and checklists throughout the life of the system.

Check it out here. Ask for an evaluation copy to try it yourself!

CTO of Cingulara. Software Geek by trade. Father of three daughters. Husband. Lover of newer tech where it fits. Follow at https://www.cingulara.com/ @cingulara

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store