Virtual Event: Threat Detection and Incident Response Summit - Watch Sessions
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

NetIQ Boosts Actionable Security Intelligence in Change Guardian 4.0

Enterprise software firm NetIQ announced updates its Change Guardian product on Tuesday, which now has the ability to detect and respond to potential threats in real time through intelligent alerting of unauthorized access and changes to critical files, systems, and applications, the company said.

Enterprise software firm NetIQ announced updates its Change Guardian product on Tuesday, which now has the ability to detect and respond to potential threats in real time through intelligent alerting of unauthorized access and changes to critical files, systems, and applications, the company said.

“Most organizations employ SIEM technology as a critical piece of the security infrastructure. However, SIEM alone is no longer enough to achieve sufficient layers of data protection and risk mitigation,” NetIQ explained. “Change Guardian complements and extends SIEM by delivering the deeper actionable intelligence on changes to systems and actions of privileged users to more quickly identify and remediate attacks before considerable damage is done.”

NetIQ Logo The latest version, Change Guardian 4.0, provides security teams with important details such as who performed an action, what action was performed, when the action was taken, and where the action was taken.

With its new features, Change Guardian 4.0 now provides:

• Rich “before and after” detail for changes to critical files and settings to enable IT to act quickly with minimal expertise.

• Policy-based monitoring that provides the ability to simply specify monitoring policies required for various regulations, mandates, best practices or internal policies.

• Additional platform support for UNIX and Linux to complement existing Windows and Active Directory capabilities.

“Unauthorized change and user activity are a leading cause of security breaches and early indicators of a targeted attack,” said Geoff Webb, director, Solution Strategy at NetIQ. “Security teams need actionable information that can extend their ability to manage risk and avoid business disruptions. Our expectations are that as organizations increasingly adopt BYOD, Mobility and Cloud, they will face even greater risks and demands, making solutions like Change Guardian a fundamental requirement to simplify and centralize response.”

Advertisement. Scroll to continue reading.

Change Guardian 4.0 is currently available on a subscription basis or perpetual license.

More information is available here

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Network Security

Our networks have become atomized which, for starters, means they’re highly dispersed. Not just in terms of the infrastructure – legacy, on-premises, hybrid, multi-cloud,...