NetIQ Secure Configuration Manager™ reduces administration costs, simplifies system audits, and helps ensure your organization remains in compliance with corporate policies and regulations.
NetIQ Secure Configuration Manager:
- Enables you to quickly identify vulnerabilities across your enterprise
- Provides a mechanism to easily establish a baseline for current system configuration
- Tracks and controls changes as they occur
- Comes with extensive out-of-the-box security and compliance knowledge and templates to reduce cost and accelerate compliance efforts
- Helps you establish and clearly demonstrate successful compliance with policies and regulations
Control/Audit Configuration and Users
Control and Audit System Configuration:NetIQ Secure Configuration Manager provides automated security configuration assessment, vulnerability scanning, baselining and delta reporting of Windows, Unix, Linux and iSeries systems.
Monitor and Manage Privileged User Activity:
NetIQ Secure Configuration Manager generates entitlement reports to easily determine who has access to systems, directories, files, settings, and more, and change reporting to ensure that access to critical resources is not abused.
Enforce Change Control
Manage and Enforce Change Control:
NetIQ Secure Configuration Manager baselines system configurations and reports differences over a period of time (i.e., delta reporting).
NetIQ SCM Console
NetIQ Secure Configuration Manager audits system configurations and compares them to corporate policies, previous snapshots, and/or other systems. It also leverages this configuration information to reliably identify vulnerabilities and exposures, using the latest security updates.
Establishing a defensible posture for internal and external auditors means providing accurate and comprehensive documentation wherein IT controls are in place and enforced. IT security and operations teams must evaluate and audit systems against policies and known vulnerabilities, then eliminate known configuration errors and their root causes. NetIQ Secure Configuration Manager allows you to demonstrate regulatory compliance and manage IT risks via scored reporting to direct remediation efforts toward issues of highest priority.
Sarbanes-Oxley
Sarbanes-Oxley Act
The US Sarbanes-Oxley Act of 2002 was enacted to address corporate governance and the accuracy of financial reporting in the US Financial Markets.
Complying with Sarbanes-Oxley requires that publicly held companies have certain internal controls in place to ensure that their financial audit records are adequately protected from vulnerabilities or weaknesses within the company's IT infrastructure.
In general, there are five different types of vulnerabilities: exposed user accounts or defaults, dangerous user behaviour, configuration flaws, missing patches and dangerous or unnecessary service.
NetIQ Secure Configuration Manager helps address some of the major provisions of Sarbanes-Oxley.
See Sarbanes-Oxley Example Report
Product Tour
View the Demo
NetIQ Secure Configuration Manager Demonstration
This demo shows you how easy it is to use the Security Manager console to gain better knowledge of security risks and maximize your protection levels.
Benefits
How our Products Help You
Efficiently enforce security configuration standards on key platforms. NetIQ Secure Configuration Manager provides customizable security checkup reports that enable you to check systems for compliance with a standard security configuration. It's easy to check hundreds or thousands of machines for compliance.- Assess and record server configurations to ease the management and maintain the operational readiness for critical business applications
- Utilize built-in knowledge to create reports of server configurations matched against multiple regulations and standards and prepare for formal audits and deliver proof of compliance
- Discover the flaws and weaknesses that could jeopardize servers and workstations, as well as evidence (changed registry settings, services running) that a system has been compromised
- View powerful risk metrics for all levels of your IT infrastructure – from enterprise down to individual machine – to illustrate the assets at greatest risk Score your security on an enterprise level and drill down. NetIQ Secure Configuration Manager can scale to tens of thousands of systems without a heavy infrastructure. NetIQ provides VigilEnt Security Agents for operating systems, databases, web servers, and firewalls to provide vulnerability management on your key technologies. You can even run scored assessment reports across different technology types at once, providing a true heterogeneous view.
