Tanium AEM typical implementation process:

1. Initial Setup and Configuration: The process begins with the initial setup of the Tanium platform, which includes installing the Tanium Server and configuring it to manage client communications and data processing. This setup is crucial for establishing the foundation of the Tanium infrastructure. 

    

2. Deployment of Tanium Client: The next step involves deploying the Tanium Client to the endpoints across the organization. This can be done using various methods such as direct installation or through automated tools like Tanium Deploy, which facilitates the installation, updating, and removal of software across endpoints efficiently. 

    

3. Configuration of Modules and Policies: Once the clients are deployed, the specific Tanium modules and policies need to be configured according to the organization's security and management requirements. This includes setting up features like Tanium Action Approval for critical operations, configuring firewall rules, and enabling cryptographic signing capabilities. 

    

4. Integration with Existing Systems: Tanium integrates with existing IT infrastructure and systems, such as Microsoft Active Directory for account management functions. This integration is essential for maintaining a cohesive security and management framework. 

    

5. Training and Testing: After the setup and configuration, training sessions for IT staff and administrators are conducted to ensure they are proficient in using the platform. Additionally, testing phases might be included to validate the setup and configurations. 

    

6. Going Live and Continuous Monitoring: Once the implementation is verified, the system goes live. Continuous monitoring and regular updates are part of the ongoing management to ensure the system remains effective against evolving threats and operational needs. 

Tanium software can be extensively customized to fit specific business needs. Here are several data points highlighting its customization capabilities: 

1. Modular Suite of Services: Tanium provides a modular suite of services that can be adopted to fit the unique needs of your organization. This flexibility allows organizations to fill gaps within their existing software management processes or enhance their capabilities with role-based access, ensuring that users from multiple groups can safely use the solution simultaneously. 

    

2. Custom Content Creation: Tanium supports the creation of custom content, allowing users to tailor the platform to their specific operational needs. This includes developing custom sensors, packages, and scripts that can be deployed across an organization's endpoints at scale. 

    

3. Automated Workflows and Integration: Tanium's platform supports automation and integration with other IT platforms, enhancing its adaptability. This includes API integrations with leading IT platforms like SOAR, SIEM, and ticketing platforms, enabling automated workflows for endpoint management and security tasks. 

    

4. Endpoint Code Customization: Users can write their own endpoint code to check the health and status of applications or services, install and configure software, or deploy security fixes. This level of customization allows for precise control and management of endpoints according to specific business requirements. 

    

5. Zero Trust Integration: Tanium integrates with Zero Trust capabilities, allowing for instant verification of a device's risk, vulnerability, and compliance posture as part of login and authentication flows. This customization is crucial for organizations implementing Zero Trust security frameworks. 

Additional costs associated with Tanium software, such as setup fees, maintenance, or support charges, are outlined in the provided sources as follows: 

1. Support Services: Tanium offers various support services, which are included under the terms of the subscription agreement. The type, term, and level of support provided are specified in the applicable schedule. Support services are available during specified hours and are provided in English unless otherwise agreed upon. 

    

2. Late Payment Charges: If payments are not made by the customer when due, they are subject to late charges. The rate is the lesser of one percent (1%) per month or the maximum rate permitted by law. This applies to overdue amounts to encourage timely payment. 

    

3. Taxes and Duties: Customers are responsible for paying all taxes, levies, or duties associated with their purchase, excluding taxes on Tanium’s net income. This includes sales, use, excise, import or export values, stamp duties, and any other taxes resulting from the delivery, possession, or use of the service or hardware. Customers must provide Tanium with a physical address for billing and tax purposes, and they are responsible for any changes in their tax status. 

    

4. Legal and Court Costs: In cases where Tanium needs to collect delinquent fees, the customer is responsible for paying all court costs, fees, expenses, and reasonable attorneys' fees incurred by Tanium. This ensures that Tanium can recover costs associated with enforcing the payment terms. 

Tanium offers a comprehensive range of training and support options for new users to ensure they can effectively utilize the platform. Here are the details of the training and support services available: 

Training Options:

1. Self-Paced Learning (WBT): Tanium provides licenses for web-based training (WBT) that are valid for one year from the date of acquisition. This allows learners to access training content at their own pace through the Tanium Learning Center (TLC). 

    

2. Virtual Multi-Customer VILT (Public): Tanium offers virtual instructor-led training (vILT) classes that individuals can purchase. These classes are available across various time zones and provide comprehensive instructions on the fundamentals of Tanium, serving as preparation for certification exams. 

    

3. Dedicated ILT/VILT (Private): For a more focused learning environment, Tanium provides dedicated onsite and virtual training sessions that can accommodate up to 20 students per delivery. This ensures a personalized and effective training experience. 

    

4. Complimentary Introductory Courses: Tanium offers complimentary introductory courses that provide a solid foundation for beginners. These courses cover fundamental concepts and terminology of the Tanium platform. 

    

5. Highly Experienced Trainers: Tanium's Certified Instructors deliver the training, ensuring that participants receive an optimal learning experience from accredited professionals. 

    

6. IACET Accreditation: Tanium's training courses are accredited through the International Accreditors for Continuing Education and Training (IACET), allowing for the addition of Continuing Education Units (CEUs) to the training courses. 

Support Services:

1. Support Team: Users can contact Tanium's support team for assistance if they cannot resolve issues with the available resources. This support is provided during specified hours and in English unless otherwise agreed upon. 

    

2. Community Site and Product Central: Tanium's Community site and Product Central are excellent resources for users, offering product documentation, knowledge articles, and links to helpful content such as YouTube videos and Tanium Career Certifications. 

    

3. Enterprise Supplemental Support: Tanium provides Enterprise Supplemental Support, which includes remote support tools and resources for onsite and remote assistance. Customers are responsible for ensuring that their network and systems comply with specifications provided by Tanium and that all components of their Tanium environment are accessible through the Remote Support Tool. 

Tanium implements a robust set of security measures to protect data, ensuring a high level of security appropriate to the risks associated with data processing. Here are the key security measures in place: 

1. Encryption and Cryptographic Support: Tanium uses advanced encryption methods to secure data. For instance, actions and packages are signed by the server using a FIPS 140-2 certified 512-bit ECC cryptography algorithm, ensuring that data is protected during transmission and validated for authenticity by the client. 

    

2. Confidentiality of Processing: Tanium ensures that any person authorized to process customer personal data is obligated to protect it in accordance with Tanium’s confidentiality obligations under the agreement. This includes implementing appropriate technical and organizational measures to safeguard data. 

    

3. Security Incident Management: In the event of a security incident, Tanium is committed to notifying customers without undue delay. The company also provides reasonable information and cooperation to help customers fulfill any data breach reporting obligations they may have under applicable data protection laws. 

    

4. Data Protection Impact Assessment: Tanium supports customers in conducting data protection impact assessments and prior consultations with data protection authorities as required by European Data Protection Law. This is part of Tanium’s commitment to compliance and assisting customers in maintaining regulatory compliance. 

    

5. Robust Access Controls: Tanium employs strong access control measures, including role-based access control (RBAC) and "Four Eyes" action approvals, which ensure that sensitive operations require approval from multiple authorized users before they can be executed. This helps in minimizing the risk of unauthorized access or actions. 

Tanium releases updates frequently, with a structured approach to managing these updates to ensure that they are delivered efficiently and effectively. Here are the key points regarding their update frequency and management: 

1. Weekly Release Updates: Tanium has a schedule for weekly release updates. This regular cadence ensures that the platform and its various components, such as Tanium Deploy and Tanium Client, are continually enhanced with new features, bug fixes, and performance improvements. 

    

2. Update Notifications: Tanium provides notifications about upcoming updates through its community platform. This helps users stay informed about new releases and the specific changes included in each update. 

    

3. Detailed Release Notes: Along with the updates, Tanium publishes detailed release notes that describe what each update entails. This includes information on new features, bug fixes, and any changes to existing functionalities. These notes are crucial for users to understand the impact of the updates and how to adapt to any significant changes. 

Tanium AEM data ownership and portability:

1. Data Ownership: As stated in the Tanium Cloud Subscription Agreement, the customer and its affiliates, licensors, partners, or suppliers retain all rights, title, and interest, including any and all intellectual property rights, in and to any data or data files of any type that are used, processed, or stored by the customer in conjunction with the Tanium service. 

    

2. Data Portability: Tanium supports data portability, which is the ability for customers to export their data from Tanium's systems. This is particularly important for compliance with data protection regulations such as the GDPR. The Data Processing Addendum specifies that Tanium provides customers with controls to retrieve, correct, delete, or restrict their personal data, enabling them to manage their data effectively and comply with their obligations under applicable Data Protection Laws. 

    

3. Rights to Modify and Share Data: Customers have the right to use, copy, store, transmit, modify, create derivative works of, and display their data as necessary solely to the extent required to utilize the service provided by Tanium. This includes the optional feature of data sharing, where customers can choose to share their data through specific features of the service, understanding that they do so at their own risk. 

These policies ensure that customers have full control over their data when using Tanium's services, aligning with legal requirements and providing flexibility in how they manage their information. 

The terms for scaling up or down as organizational needs change, particularly in the context of Tanium software, are centered around flexibility and ease of adjustment to accommodate varying levels of demand.  

1. Flexibility and Adaptability: Tanium provides a modular suite of services that can be adopted to fit the unique needs of your organization. This flexibility allows organizations to fill gaps within their existing software management processes or enhance their capabilities with role-based access, ensuring that users from multiple groups can safely use the solution simultaneously. 

    

2. Ease of Adding or Removing Agents: The platform enables the addition or removal of agents with just a few clicks, making it simple to adjust the workforce based on current needs. 

    

3. Customizable Features: Tanium allows for the customization of features, which can be added, removed, or modified by the user or the Tanium team, depending on the requirements of the business. 

    

4. No Need for Dedicated IT Staff: The system is designed to be maintained without the need for a dedicated IT staff, and updates or plug-ins are managed by Tanium, reducing the burden on the organization. 

    

5. Cost-Effective Scaling: Outsourcing contact center services to BPOs can be more cost-effective than handling them in-house, especially when considering labor costs in different regions or countries. Tanium partners with BPO contact centers to bring their expertise and scale to customers around the world. 

    

6. Rapid Deployment: Tanium's solutions can be deployed in as little as 24 hours, and agents can be ramped up with an intuitive app that requires virtually no training, allowing for quick scaling. 

The terms and conditions for contract renewal and cancellation for Tanium are outlined in various agreements, providing detailed guidelines on how these processes are managed. Here are the key points from the provided sources: 

Contract Renewal:

1. Service Period and Renewal Terms: The Tanium Cloud Subscription Agreement specifies that the service period includes renewal terms, if any. This implies that the contract may automatically renew for subsequent periods unless otherwise terminated by either party under the conditions set forth in the agreement. 

Cancellation:

1. Termination Rights: Under the Tanium Cloud Subscription Agreement, if the service period is less than ninety (90) days, the warranty period will be for the length of the service period. Tanium may terminate the relevant licenses and refund to the customer the portion of prepaid license fees applicable if repair or replacement of the non-conforming service would be commercially unreasonable. 

    

2. Data Deletion Post-Termination: Upon termination or expiry of the service, Tanium is required to delete or return to the customer all customer data in its possession or control that Tanium processes as a data processor, unless the customer notifies Tanium of its election within thirty (30) days following termination or expiry of the service. 

    

3. Hardware Specific Terms: For hardware purchases, the Hardware Terms and Conditions specify that the customer agrees to the terms upon accessing or using the hardware. This agreement includes specific provisions for the warranty and support of the hardware, which are governed by the Hardware Agreement if one exists. 

    

4. Modification of Agreement: The Data Processing Addendum states that notwithstanding any limitations on modification or amendment in the Agreement, Tanium may periodically update the Addendum solely to maintain compliance with changes in Data Protection Laws. 

    

5. Cancellation Policy for Services: The Tanium-as-a-Service (TaaS) Subscription Agreement outlines that if the customer does not agree to the terms and conditions, they should not access, install, or use the service. This implies that cancellation can be effected by discontinuing use and not accepting the terms during renewal periods. 

Tanium software meets a variety of compliance standards, ensuring robust security and adherence to regulatory requirements. Here are the specific compliance standards that Tanium meets: 

1. CIS Benchmarks: Tanium products have been awarded CIS Security Software Certification for multiple CIS Benchmarks. These benchmarks are recognized globally as best practices for securing IT systems and data against cyber threats. Tanium Comply, for instance, is certified for a wide range of benchmarks, including those for IBM AIX, Cisco IOS, Microsoft Windows Server, Apple macOS, and more. 

    

2. Security Technical Implementation Guides (STIGs): Tanium 7.0 adheres to the Security Technical Implementation Guides (STIGs), which provide a methodology for standardized secure installation and maintenance of DOD information assurance (IA) and IA-enabled devices and systems. 

    

3. TLS 1.2 Strict Only: Tanium is configured to communicate using TLS 1.2 Strict Only, ensuring that the confidentiality and integrity of data in transit are protected. This configuration prevents unauthorized interception and access to sensitive data. 

    

4. Extended Key Usage for Server Authentication: The Tanium Server certificates must have Extended Key Usage entries for serverAuth object TLS Web Server, enhancing the security during data aggregation and protocol transformation points. 

    

5. Protection of Audit Tools: Tanium ensures that audit tools are protected from unauthorized access, modification, or deletion, which is crucial for maintaining the integrity of audit data.