Introduction

HCL® BigFix Compliance Analytics (formerly known as Security Compliance and Analytics, or SCA) is a component of BigFix Compliance, which includes vulnerability detection libraries and technical controls and tools that are based on industry practices and standards for endpoint and server security configuration (SCM checklists). The vulnerability detection libraries and the technical controls enable continuous, automated detection and remediation of security configuration issues.

BigFix Compliance Analytics provides report views and tools for managing the vulnerability of SCM checks.

BigFix Compliance Analytics generates the following reports, which can be filtered, sorted, grouped, customized, or exported with the use of any set of Endpoint Manager properties:

  • Overviews of Compliance Status, Vulnerabilities, and History
  • Checklists: Compliance Status and History
  • Checks: Compliance Status, Values, and History
  • Vulnerabilities: Rollup Status and History
  • Vulnerability Results: Detailed Status
  • Computers: Compliance Status, Values, Vulnerabilities, and History
  • Computer Groups: Compliance Status, Vulnerabilities, and History
  • Exceptions: Management, Status, and History

New features

The following features and enhancements are included in BigFix Compliance version 1.9.

  • Policy feature, which is a collection of checklists for PCI users that allows for aggreration and rollups across multiple checklists. For more information, see the BigFix Compliance Payment Card Industry (PCI) Add-on User's Guide.
  • Receive e-mail notifications for failed imports and when unexpected changes to target reports occur (which includes disparity in expected number of rows and when the number of rows are updated on a saved report.)
  • Lines with lengthy content entries are wrapped on the Grid Report View and on PDF grid reports.
  • Use of BigFix Compliance and BigFix Inventory on the same server without any session key conflicts.
  • Improved viewing - The Overview page does not display the Vulnerability Overview if there is no report about vulnerability
  • Upgrade to Ruby on Rails version 4.2
  • Update of JRE to 8.0.4.10
  • Support of upgrades from earlier versions of Compliance. For more information, see Upgrading from earlier versions of BigFix Compliance Analytics.