Change Audit and Configuration Assessment (Tripwire)
“A small change can make a big difference”. One small change in the company’s critical servers or devices like routers, switches, firewall, servers, databases, directory services and applications depending on whether the change is desired or not can cause a huge difference in the performance of a system.
Statistics show that 70% – 80% of all changes resulting to downtimes or reduced system capability are initiated internally and are mostly accidental or unintentional. As a result many traditional security solutions may not detect them or report who made the changes and at what time.
A robust security solution should assess the system for compliance in relation to industry set standard, establish a baseline state, take a snapshot then monitors the systems of any deviation.
File Integrity Monitoring
A key requirement of modern IT security is file integrity monitoring.
- Tripwire Enterprise’s File Integrity Manager notes change, but also captures details necessary to identify risks or threats accompanying these changes. It determines who made the change and when, what actions occurred before or after, and if the change was authorized.
- Tripwire also assures security by providing in-depth file integrity monitoring on files and configurations throughout physical and virtual infrastructures enabling organizations realize the security benefits of end-to-end file integrity monitoring. This lessens the risk associated with system change, immediately detecting unauthorized change, and automatically correcting problems or allowing IT to quickly intervene. It thus provides comprehensive solution that enables organizations mitigate security risks, increase operational efficiency while ensuring configurations remain in a known and trusted state.
Compliance Policy Manager
Without a doubt, IT threats are increasing. The continual strengthening of compliance and security initiatives demonstrate the real concern about these threats by pushing for better IT security. IT needs an easy, automated way to prove compliance with these mandates without hampering daily operations. These industry standards include Payment Card Industry (PCI) for retailers, SOX for accounting practices, HIPAA for health care, NERC for energy suppliers, NIST for government concerns and so on.
- Tripwire Enterprise’s Policy Compliance Manager continually assesses IT configurations against dozens of policies and standards, and for the multiple different platforms, hardware types and devices these policies impact.
- It provides over 200 unique policies that instantly assess file and configuration settings on virtually any combination of hardware and devices. Policy Compliance Manager pinpoints efficiencies, speeds remediation, and dramatically lowers the costs of proving compliance.
Tripwire Log Center integration
Tripwire Enterprise’s built-in integration with Tripwire Log Center automatically correlates detected changes with log events. This grants immediate visibility and context to detected file and configuration changes, and immediately transforms raw data into useful knowledge.
Reporting
Tripwire offers comprehensive and flexible reporting. Tripwire includes thousands of pre-defined standard reports that provide real-time views of configuration assessments and change auditing activities. Users can also easily create custom reports with drill-down capabilities.
