Enterprise software firm NetIQ announced updates its Change Guardian product on Tuesday, which now has the ability to detect and respond to potential threats in real time through intelligent alerting of unauthorized access and changes to critical files, systems, and applications, the company said.
“Most organizations employ SIEM technology as a critical piece of the security infrastructure. However, SIEM alone is no longer enough to achieve sufficient layers of data protection and risk mitigation,” NetIQ explained. “Change Guardian complements and extends SIEM by delivering the deeper actionable intelligence on changes to systems and actions of privileged users to more quickly identify and remediate attacks before considerable damage is done.”
With its new features, Change Guardian 4.0 now provides:
• Rich “before and after” detail for changes to critical files and settings to enable IT to act quickly with minimal expertise.
• Policy-based monitoring that provides the ability to simply specify monitoring policies required for various regulations, mandates, best practices or internal policies.
• Additional platform support for UNIX and Linux to complement existing Windows and Active Directory capabilities.
“Unauthorized change and user activity are a leading cause of security breaches and early indicators of a targeted attack,” said Geoff Webb, director, Solution Strategy at NetIQ. “Security teams need actionable information that can extend their ability to manage risk and avoid business disruptions. Our expectations are that as organizations increasingly adopt BYOD, Mobility and Cloud, they will face even greater risks and demands, making solutions like Change Guardian a fundamental requirement to simplify and centralize response.”
Change Guardian 4.0 is currently available on a subscription basis or perpetual license.
More information is available here.