NetIQ Secure Configuration Manager

(Security Vulnerability and Compliance Management)

NetIQ Secure Configuration Manager  audits system configurations and compares them to corporate policies, previous snapshots, and/or other systems. It also leverages this configuration information to reliably identify vulnerabilities and exposures, using the latest security updates.

Establishing a defensible posture for internal and external auditors means providing accurate and comprehensive documentation wherein IT controls are in place and enforced. IT security and operations teams must evaluate and audit systems against policies and known vulnerabilities, then eliminate known configuration errors and their root causes. NetIQ Secure Configuration Manager allows you to demonstrate regulatory compliance and manage IT risks via scored reporting to direct remediation efforts toward issues of highest priority.

Sarbanes-Oxley Act

The US Sarbanes-Oxley Act of 2002 was enacted to address corporate governance and the accuracy of financial reporting in the US Financial Markets.

Complying with Sarbanes-Oxley requires that publicly held companies have certain internal controls in place to ensure that their financial audit records are adequately protected from vulnerabilities or weaknesses within the company's IT infrastructure.

In general, there are five different types of vulnerabilities: exposed user accounts or defaults, dangerous user behaviour, configuration flaws, missing patches and dangerous or unnecessary service.

NetIQ Secure Configuration Manager helps address some of the major provisions of Sarbanes-Oxley.

See Sarbanes-Oxley Example Report

 View the Demo

NetIQ Secure Configuration Manager Demonstration

This demo shows you how easy it is to use the Security Manager console to gain better knowledge of security risks and maximize your protection levels.

How our Products Help You

• Assess and record server configurations to ease the management and maintain the operational readiness for critical business applications
• Utilize built-in knowledge to create reports of server configurations matched against multiple regulations and standards and prepare for formal audits and deliver proof of compliance
• Discover the flaws and weaknesses that could jeopardize servers and workstations, as well as evidence (changed registry settings, services running) that a system has been compromised
• View powerful risk metrics for all levels of your IT infrastructure – from enterprise down to individual machine – to illustrate the assets at greatest risk Score your security on an enterprise level and drill down. NetIQ Secure Configuration Manager can scale to tens of thousands of systems without a heavy infrastructure. NetIQ provides VigilEnt Security Agents for operating systems, databases, web servers, and firewalls to provide vulnerability management on your key technologies. You can even run scored assessment reports across different technology types at once, providing a true heterogeneous view.