SlideShare a Scribd company logo

Top 10 Critical IT Changes to Audit

Download as PPTX, PDF
Netwrix Corporation
Netwrix Corporation

This document discusses the top 10 critical IT changes that should be audited and introduces the NetWrix Change Reporter Suite for auditing these changes. The suite collects audit data from multiple sources, stores it scalably, and provides flexible reporting and long-term archiving. It audits changes to Active Directory, Group Policy, Exchange, file servers, SQL, routers/firewalls, virtual environments, and user logon/logoff activity. The demonstration shows how it clearly displays who made what changes, when, and where using a unified platform.

1 of 18
#1 for Change Auditing Simple, Efficient, Affordable Top 10 Critical Changes to Audit in Your IT Infrastructure Bob Bobel, Director of Product Management E-mail: bob.bobel@netwrix.com Twitter: @rbobel LinkedIn: www.linkedin.com/in/robertbobel #1 for Change Auditing Simple, Efficient, Affordable
Agenda • Understand WHY you need to audit • Define key audit requirements • Identify the 10 most critical changes to audit • Introduction to NetWrix Change Reporter Suite • Demonstration • Why NetWrix? • Questions #1 for Change Auditing Simple, Efficient, Affordable
Why you need to Audit • Security - Changes in security settings may have unexpected consequences • Unauthorized Access - Prevention of Data theft, files and email • Troubleshooting - it worked before, what happened? • Root Cause Analysis - The system is broken, what lead to this? • Admin Activity & Delegation Permissions- Hold all Admins accountable • Change Control Management • Compliance - PCI, SOX, HIPAA, etc. #1 for Change Auditing Simple, Efficient, Affordable
Solution Requirements 1. Automated collection 2. Use of diverse audit data sources (single-source = less detail) 3. Filtering and consolidation (no log noise) 4. Centralized securable storage for short and long- term 5. Flexible Reporting 6. Shows 4Ws: (WHO, WHAT, WHEN, WHERE) 7. Shows BEFORE and AFTER detail clearly #1 for Change Auditing Simple, Efficient, Affordable
Solution Requirements (continued) • Centralized secure auditing • Simply and efficiently display key WHO, WHAT, WHEN and WHERE changes details with both BEFORE and AFTER values • Efficient sort term and long term storage of audit & configuration data • Enterprise Scalability #1 for Change Auditing Simple, Efficient, Affordable
Solution Requirements (continued) • Predefined reports (Not offered natively) • Compliance-ready reports • Report customization • Report subscriptions • Simple to read output #1 for Change Auditing Simple, Efficient, Affordable
Top-10 Critical Changes and Activities 1. Active Directory: Group Memberships 2. Group Policy: Password Policy 3. Exchange: Message store 4. Mailbox access by non-owners 5. Windows Server: Local Users and Groups 6. File Servers: Access Attempts and Changes 7. SQL: Security and roles 8. Router and Firewall changes 9. Virtual environment changes 10. User Logon/Logoff Activity #1 for Change Auditing Simple, Efficient, Affordable
Introducing… NetWrix Change Reporter Suite Unified Auditing for Key IT Systems • Simple – Easy to use, installs in minutes & built on NetWrix Change Reporter AAA platform • Efficient - lightweight architecture without dangerous agents or OS level drivers • Affordable - modular and part of the NetWrix Enterprise Suite #1 for Change Auditing Simple, Efficient, Affordable
Features and Benefits Audit data we collect AuditAssurance™ • Configuration • Native Events • Other Scalable Storage • The Backbone of reporting • Normalized the 4W details of Who, What, When and Where across systems and applications AuditIntellegence™ • Searchable and supports custom reports #1 for Change Auditing Simple, Efficient, Affordable
Features and Benefits Analysis & Reporting • Pre-built reports many designed from customer feedback • View on-screen, over the Web, Export in various formats & subscriptions for automation • Clearly displays 4W detail Who, What, When and Where • Uses Microsoft SQL Reporting Services #1 for Change Auditing Simple, Efficient, Affordable
Features and Benefits AuditArchive™ • Configurable Retention Policy – Store years of data, competitors may only store months of data • Can be accessed when needed for historical purposes (import) #1 for Change Auditing Simple, Efficient, Affordable
NetWrix AAA Platform Technology • AuditAssurance™ technology consolidates audit data from multiple independent sources, filling-in key details not present in any single source. • AuditIntelligence™ technology provides a complete audit picture by transforming raw audit data into meaningful and actionable intelligence. • AuditArchive™ technology provides long-term archiving, making your data available for historical reporting and forensics analysis. #1 for Change Auditing Simple, Efficient, Affordable
#1 for Change Auditing Simple, Efficient, Affordable Demonstration #1 for Change Auditing Simple, Efficient, Affordable
Others who chose NetWrix Financial Federal, State & Local Government • ING Direct • Columbia University • Forex Capital Markets • Bureau of National Affairs • Berkshire Hathaway • State of Maine • Zurich Financial Services • NYC Dept. of Transportation • Thomson Reuters • US District Court, SDNY • Fiserv • Massachusetts Port Authority • Alaska State Legislature Healthcare & Pharmaceutical • Columbia University • Vertex Pharmaceuticals • Verizon Business Systems • Blue Cross of Idaho • Black & Decker • Berkeley National Laboratory • Universal NBC • National Institute of Health (NIH) • US Military Academy • Massachusetts General Hospital • WebMD #1 for Change Auditing Simple, Efficient, Affordable
NetWrix Suites All-in-One Suite Change Reporter Suite IDM Suite Active Directory SharePoint Password Manager Object Restore SQL Server Password Expiration Group Policy Windows Server Notifier Exchange VMware Logon Reporter Mailbox Access Event Log Manager Inactive Users Tracker File Servers Activity Recorder NetApp & EMC FREE Trials at www.netwrix.com #1 for Change Auditing Simple, Efficient, Affordable
Protect your investment • Upgrade to any suite = 100% credit applied from any prior license purchase • New product additions to suites are provided to you at no charge so long as support and maintenance fees are current #1 for Change Auditing Simple, Efficient, Affordable
Next Steps… • Download a FREE TRIAL at www.netwrix.com – Trial license is included with the download – Support is provided during trial period • Virtual POC – Virtual TestDrive™ is available in some areas – Online server allows you to quickly understand the incredible value of our software #1 for Change Auditing Simple, Efficient, Affordable
#1 for Change Auditing Simple, Efficient, Affordable Thank you For more information visit www.netwrix.com Bob Bobel, Director of Product Management E-mail: bob.bobel@netwrix.com Twitter: @rbobel LinkedIn: www.linkedin.com/in/robertbobel #1 for Change Auditing Simple, Efficient, Affordable

Recommended

Top 5 identity management challenges and solutions
Top 5 identity management challenges and solutionsTop 5 identity management challenges and solutions
Top 5 identity management challenges and solutionsNetwrix Corporation
 
Top 5 critical changes to audit for active directory
Top 5 critical changes to audit for active directoryTop 5 critical changes to audit for active directory
Top 5 critical changes to audit for active directoryNetwrix Corporation
 
NetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetwrix Corporation
 
File system auditing who accessed what files and where
File system auditing who accessed what files and whereFile system auditing who accessed what files and where
File system auditing who accessed what files and whereNetwrix Corporation
 
So you’ve successfully installed SCOM… Now what.
So you’ve successfully installed SCOM… Now what.So you’ve successfully installed SCOM… Now what.
So you’ve successfully installed SCOM… Now what.Microsoft TechNet - Belgium and Luxembourg
 
ERP IT Infrastructure Audit
ERP IT Infrastructure AuditERP IT Infrastructure Audit
ERP IT Infrastructure Auditvelcomerp
 
#MFSummit2016 Secure: Mind the gap strengthening the information security model
#MFSummit2016 Secure: Mind the gap strengthening the information security model#MFSummit2016 Secure: Mind the gap strengthening the information security model
#MFSummit2016 Secure: Mind the gap strengthening the information security modelMicro Focus
 
License Estate
License EstateLicense Estate
License Estatelicenseestate
 

Recommended

Top 5 identity management challenges and solutions
Top 5 identity management challenges and solutionsTop 5 identity management challenges and solutions
Top 5 identity management challenges and solutionsNetwrix Corporation
 
Top 5 critical changes to audit for active directory
Top 5 critical changes to audit for active directoryTop 5 critical changes to audit for active directory
Top 5 critical changes to audit for active directoryNetwrix Corporation
 
NetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetWrix Change Reporter Suite - Product Review by Don Jones
NetWrix Change Reporter Suite - Product Review by Don JonesNetwrix Corporation
 
File system auditing who accessed what files and where
File system auditing who accessed what files and whereFile system auditing who accessed what files and where
File system auditing who accessed what files and whereNetwrix Corporation
 
So you’ve successfully installed SCOM… Now what.
So you’ve successfully installed SCOM… Now what.So you’ve successfully installed SCOM… Now what.
So you’ve successfully installed SCOM… Now what.Microsoft TechNet - Belgium and Luxembourg
 
ERP IT Infrastructure Audit
ERP IT Infrastructure AuditERP IT Infrastructure Audit
ERP IT Infrastructure Auditvelcomerp
 
#MFSummit2016 Secure: Mind the gap strengthening the information security model
#MFSummit2016 Secure: Mind the gap strengthening the information security model#MFSummit2016 Secure: Mind the gap strengthening the information security model
#MFSummit2016 Secure: Mind the gap strengthening the information security modelMicro Focus
 
License Estate
License EstateLicense Estate
License Estatelicenseestate
 
IT Service & Asset Management Better Together
IT Service & Asset Management Better TogetherIT Service & Asset Management Better Together
IT Service & Asset Management Better TogetherIvanti
 
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
#MFSummit2016 Secure: Is your mainframe less secure than your fileserverMicro Focus
 
Micro Focus Filr - #MFSummit2017
Micro Focus Filr - #MFSummit2017Micro Focus Filr - #MFSummit2017
Micro Focus Filr - #MFSummit2017Micro Focus
 
Oracle security-formula
Oracle security-formulaOracle security-formula
Oracle security-formulaOracleIDM
 
Federal Webinar: Technical Update and Demo of New Features
Federal Webinar: Technical Update and Demo of New FeaturesFederal Webinar: Technical Update and Demo of New Features
Federal Webinar: Technical Update and Demo of New FeaturesSolarWinds
 
Government Webinar: Improving Security Compliance with IT Monitoring Tools
Government Webinar: Improving Security Compliance with IT Monitoring Tools Government Webinar: Improving Security Compliance with IT Monitoring Tools
Government Webinar: Improving Security Compliance with IT Monitoring Tools SolarWinds
 
Round table guide
Round table guideRound table guide
Round table guideOracleIDM
 
Manpower group idm-platform
Manpower group idm-platformManpower group idm-platform
Manpower group idm-platformOracleIDM
 
Compliance in Virtualized Environments
Compliance in Virtualized EnvironmentsCompliance in Virtualized Environments
Compliance in Virtualized EnvironmentsSeccuris Inc.
 
How Nationwide Insurance use IBM Decision Manager and BPM
How Nationwide Insurance use IBM Decision Manager and BPM How Nationwide Insurance use IBM Decision Manager and BPM
How Nationwide Insurance use IBM Decision Manager and BPM sflynn073
 
Open Architecture: The Key to Aviation Security
Open Architecture: The Key to Aviation SecurityOpen Architecture: The Key to Aviation Security
Open Architecture: The Key to Aviation Securityagoldsmith1
 
SolarWinds Federal Webinar - Using Tools to Improve IT Service Management
SolarWinds Federal Webinar - Using Tools to Improve IT Service ManagementSolarWinds Federal Webinar - Using Tools to Improve IT Service Management
SolarWinds Federal Webinar - Using Tools to Improve IT Service ManagementSolarWinds
 
Introduction to Identity Management
Introduction to Identity ManagementIntroduction to Identity Management
Introduction to Identity ManagementHitachi ID Systems, Inc.
 
#MFSummit2016 Operate: Towards a unified endpoint management strategy
#MFSummit2016 Operate: Towards a unified endpoint management strategy#MFSummit2016 Operate: Towards a unified endpoint management strategy
#MFSummit2016 Operate: Towards a unified endpoint management strategyMicro Focus
 
Simplify Troubleshooting With Context in Your Logs
Simplify Troubleshooting With Context in Your LogsSimplify Troubleshooting With Context in Your Logs
Simplify Troubleshooting With Context in Your LogsSolarWinds
 
Securing Your Infrastructure: Identity Management and Data Protection
Securing Your Infrastructure: Identity Management and Data ProtectionSecuring Your Infrastructure: Identity Management and Data Protection
Securing Your Infrastructure: Identity Management and Data ProtectionLumension
 
Troubleshooting the Most Common Citrix Complaints for Remote Workers
Troubleshooting the Most Common Citrix Complaints for Remote WorkersTroubleshooting the Most Common Citrix Complaints for Remote Workers
Troubleshooting the Most Common Citrix Complaints for Remote WorkerseG Innovations
 
Federal Webinar: Improve IT Service Management and help meet Federal Standards
Federal Webinar: Improve IT Service Management and help meet Federal StandardsFederal Webinar: Improve IT Service Management and help meet Federal Standards
Federal Webinar: Improve IT Service Management and help meet Federal StandardsSolarWinds
 
IBM Endpoint Manager for Lifecycle Management (Overview)
IBM Endpoint Manager for Lifecycle Management (Overview)IBM Endpoint Manager for Lifecycle Management (Overview)
IBM Endpoint Manager for Lifecycle Management (Overview)Kimber Spradlin
 
Improving System Upgrades and Patching using SolarWinds
Improving System Upgrades and Patching using SolarWindsImproving System Upgrades and Patching using SolarWinds
Improving System Upgrades and Patching using SolarWindsSolarWinds
 
Office 365 presentation
Office 365 presentationOffice 365 presentation
Office 365 presentationSaed Shela
 
Edugalaxy 2012 1
Edugalaxy 2012 1Edugalaxy 2012 1
Edugalaxy 2012 1ekaterina_a
 

More Related Content

What's hot

IT Service & Asset Management Better Together
IT Service & Asset Management Better TogetherIT Service & Asset Management Better Together
IT Service & Asset Management Better TogetherIvanti
 
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
#MFSummit2016 Secure: Is your mainframe less secure than your fileserverMicro Focus
 
Micro Focus Filr - #MFSummit2017
Micro Focus Filr - #MFSummit2017Micro Focus Filr - #MFSummit2017
Micro Focus Filr - #MFSummit2017Micro Focus
 
Oracle security-formula
Oracle security-formulaOracle security-formula
Oracle security-formulaOracleIDM
 
Federal Webinar: Technical Update and Demo of New Features
Federal Webinar: Technical Update and Demo of New FeaturesFederal Webinar: Technical Update and Demo of New Features
Federal Webinar: Technical Update and Demo of New FeaturesSolarWinds
 
Government Webinar: Improving Security Compliance with IT Monitoring Tools
Government Webinar: Improving Security Compliance with IT Monitoring Tools Government Webinar: Improving Security Compliance with IT Monitoring Tools
Government Webinar: Improving Security Compliance with IT Monitoring Tools SolarWinds
 
Round table guide
Round table guideRound table guide
Round table guideOracleIDM
 
Manpower group idm-platform
Manpower group idm-platformManpower group idm-platform
Manpower group idm-platformOracleIDM
 
Compliance in Virtualized Environments
Compliance in Virtualized EnvironmentsCompliance in Virtualized Environments
Compliance in Virtualized EnvironmentsSeccuris Inc.
 
How Nationwide Insurance use IBM Decision Manager and BPM
How Nationwide Insurance use IBM Decision Manager and BPM How Nationwide Insurance use IBM Decision Manager and BPM
How Nationwide Insurance use IBM Decision Manager and BPM sflynn073
 
Open Architecture: The Key to Aviation Security
Open Architecture: The Key to Aviation SecurityOpen Architecture: The Key to Aviation Security
Open Architecture: The Key to Aviation Securityagoldsmith1
 
SolarWinds Federal Webinar - Using Tools to Improve IT Service Management
SolarWinds Federal Webinar - Using Tools to Improve IT Service ManagementSolarWinds Federal Webinar - Using Tools to Improve IT Service Management
SolarWinds Federal Webinar - Using Tools to Improve IT Service ManagementSolarWinds
 
#MFSummit2016 Operate: Towards a unified endpoint management strategy
#MFSummit2016 Operate: Towards a unified endpoint management strategy#MFSummit2016 Operate: Towards a unified endpoint management strategy
#MFSummit2016 Operate: Towards a unified endpoint management strategyMicro Focus
 
Simplify Troubleshooting With Context in Your Logs
Simplify Troubleshooting With Context in Your LogsSimplify Troubleshooting With Context in Your Logs
Simplify Troubleshooting With Context in Your LogsSolarWinds
 
Securing Your Infrastructure: Identity Management and Data Protection
Securing Your Infrastructure: Identity Management and Data ProtectionSecuring Your Infrastructure: Identity Management and Data Protection
Securing Your Infrastructure: Identity Management and Data ProtectionLumension
 
Troubleshooting the Most Common Citrix Complaints for Remote Workers
Troubleshooting the Most Common Citrix Complaints for Remote WorkersTroubleshooting the Most Common Citrix Complaints for Remote Workers
Troubleshooting the Most Common Citrix Complaints for Remote WorkerseG Innovations
 
Federal Webinar: Improve IT Service Management and help meet Federal Standards
Federal Webinar: Improve IT Service Management and help meet Federal StandardsFederal Webinar: Improve IT Service Management and help meet Federal Standards
Federal Webinar: Improve IT Service Management and help meet Federal StandardsSolarWinds
 
IBM Endpoint Manager for Lifecycle Management (Overview)
IBM Endpoint Manager for Lifecycle Management (Overview)IBM Endpoint Manager for Lifecycle Management (Overview)
IBM Endpoint Manager for Lifecycle Management (Overview)Kimber Spradlin
 
Improving System Upgrades and Patching using SolarWinds
Improving System Upgrades and Patching using SolarWindsImproving System Upgrades and Patching using SolarWinds
Improving System Upgrades and Patching using SolarWindsSolarWinds
 

What's hot (20)

IT Service & Asset Management Better Together
IT Service & Asset Management Better TogetherIT Service & Asset Management Better Together
IT Service & Asset Management Better Together
 
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
#MFSummit2016 Secure: Is your mainframe less secure than your fileserver
 
Micro Focus Filr - #MFSummit2017
Micro Focus Filr - #MFSummit2017Micro Focus Filr - #MFSummit2017
Micro Focus Filr - #MFSummit2017
 
Oracle security-formula
Oracle security-formulaOracle security-formula
Oracle security-formula
 
Federal Webinar: Technical Update and Demo of New Features
Federal Webinar: Technical Update and Demo of New FeaturesFederal Webinar: Technical Update and Demo of New Features
Federal Webinar: Technical Update and Demo of New Features
 
Government Webinar: Improving Security Compliance with IT Monitoring Tools
Government Webinar: Improving Security Compliance with IT Monitoring Tools Government Webinar: Improving Security Compliance with IT Monitoring Tools
Government Webinar: Improving Security Compliance with IT Monitoring Tools
 
Round table guide
Round table guideRound table guide
Round table guide
 
Manpower group idm-platform
Manpower group idm-platformManpower group idm-platform
Manpower group idm-platform
 
Compliance in Virtualized Environments
Compliance in Virtualized EnvironmentsCompliance in Virtualized Environments
Compliance in Virtualized Environments
 
How Nationwide Insurance use IBM Decision Manager and BPM
How Nationwide Insurance use IBM Decision Manager and BPM How Nationwide Insurance use IBM Decision Manager and BPM
How Nationwide Insurance use IBM Decision Manager and BPM
 
Open Architecture: The Key to Aviation Security
Open Architecture: The Key to Aviation SecurityOpen Architecture: The Key to Aviation Security
Open Architecture: The Key to Aviation Security
 
SolarWinds Federal Webinar - Using Tools to Improve IT Service Management
SolarWinds Federal Webinar - Using Tools to Improve IT Service ManagementSolarWinds Federal Webinar - Using Tools to Improve IT Service Management
SolarWinds Federal Webinar - Using Tools to Improve IT Service Management
 
Introduction to Identity Management
Introduction to Identity ManagementIntroduction to Identity Management
Introduction to Identity Management
 
#MFSummit2016 Operate: Towards a unified endpoint management strategy
#MFSummit2016 Operate: Towards a unified endpoint management strategy#MFSummit2016 Operate: Towards a unified endpoint management strategy
#MFSummit2016 Operate: Towards a unified endpoint management strategy
 
Simplify Troubleshooting With Context in Your Logs
Simplify Troubleshooting With Context in Your LogsSimplify Troubleshooting With Context in Your Logs
Simplify Troubleshooting With Context in Your Logs
 
Securing Your Infrastructure: Identity Management and Data Protection
Securing Your Infrastructure: Identity Management and Data ProtectionSecuring Your Infrastructure: Identity Management and Data Protection
Securing Your Infrastructure: Identity Management and Data Protection
 
Troubleshooting the Most Common Citrix Complaints for Remote Workers
Troubleshooting the Most Common Citrix Complaints for Remote WorkersTroubleshooting the Most Common Citrix Complaints for Remote Workers
Troubleshooting the Most Common Citrix Complaints for Remote Workers
 
Federal Webinar: Improve IT Service Management and help meet Federal Standards
Federal Webinar: Improve IT Service Management and help meet Federal StandardsFederal Webinar: Improve IT Service Management and help meet Federal Standards
Federal Webinar: Improve IT Service Management and help meet Federal Standards
 
IBM Endpoint Manager for Lifecycle Management (Overview)
IBM Endpoint Manager for Lifecycle Management (Overview)IBM Endpoint Manager for Lifecycle Management (Overview)
IBM Endpoint Manager for Lifecycle Management (Overview)
 
Improving System Upgrades and Patching using SolarWinds
Improving System Upgrades and Patching using SolarWindsImproving System Upgrades and Patching using SolarWinds
Improving System Upgrades and Patching using SolarWinds
 

Viewers also liked

Office 365 presentation
Office 365 presentationOffice 365 presentation
Office 365 presentationSaed Shela
 
Edugalaxy 2012 1
Edugalaxy 2012 1Edugalaxy 2012 1
Edugalaxy 2012 1ekaterina_a
 
Adolescent medicine
Adolescent medicineAdolescent medicine
Adolescent medicineclaudellemd
 
Sellick Partnership Legal Division
Sellick Partnership Legal DivisionSellick Partnership Legal Division
Sellick Partnership Legal Divisionkatejasper
 
Ch. 1 plainchant & secular monophony
Ch. 1 plainchant & secular monophonyCh. 1 plainchant & secular monophony
Ch. 1 plainchant & secular monophonydavaughnmiller
 
хун гүнжийн домог
хун гүнжийн домогхун гүнжийн домог
хун гүнжийн домогltuya
 
CLIMA HIT Płock
CLIMA HIT PłockCLIMA HIT Płock
CLIMA HIT PłocksalonyVi
 
introduction to entrepreneurship
introduction to entrepreneurshipintroduction to entrepreneurship
introduction to entrepreneurshipMohamed Khalloufi
 
The Professional Professional Sales Person
The Professional Professional Sales PersonThe Professional Professional Sales Person
The Professional Professional Sales PersonRichard Marcus
 
V-INSTAL Góra Kalwaria
V-INSTAL Góra KalwariaV-INSTAL Góra Kalwaria
V-INSTAL Góra KalwariasalonyVi
 
Plan and create assessments in sa
Plan and create assessments in saPlan and create assessments in sa
Plan and create assessments in saAdam Caplan
 
Plan and create assessments in sa
Plan and create assessments in saPlan and create assessments in sa
Plan and create assessments in saAdam Caplan
 
STG Poznań
STG PoznańSTG Poznań
STG PoznańsalonyVi
 

Viewers also liked (20)

Office 365 presentation
Office 365 presentationOffice 365 presentation
Office 365 presentation
 
Edugalaxy 2012 1
Edugalaxy 2012 1Edugalaxy 2012 1
Edugalaxy 2012 1
 
Adolescent medicine
Adolescent medicineAdolescent medicine
Adolescent medicine
 
Rocks...
Rocks...Rocks...
Rocks...
 
Sellick Partnership Legal Division
Sellick Partnership Legal DivisionSellick Partnership Legal Division
Sellick Partnership Legal Division
 
จำนวนเชิงซ้อน
จำนวนเชิงซ้อนจำนวนเชิงซ้อน
จำนวนเชิงซ้อน
 
Ch. 1 plainchant & secular monophony
Ch. 1 plainchant & secular monophonyCh. 1 plainchant & secular monophony
Ch. 1 plainchant & secular monophony
 
хун гүнжийн домог
хун гүнжийн домогхун гүнжийн домог
хун гүнжийн домог
 
Allah 01(1)
Allah 01(1)Allah 01(1)
Allah 01(1)
 
CLIMA HIT Płock
CLIMA HIT PłockCLIMA HIT Płock
CLIMA HIT Płock
 
introduction to entrepreneurship
introduction to entrepreneurshipintroduction to entrepreneurship
introduction to entrepreneurship
 
Victoria
VictoriaVictoria
Victoria
 
PR for Startups
PR for StartupsPR for Startups
PR for Startups
 
The Professional Professional Sales Person
The Professional Professional Sales PersonThe Professional Professional Sales Person
The Professional Professional Sales Person
 
85 broads for_v3
85 broads for_v385 broads for_v3
85 broads for_v3
 
portfolio
portfolioportfolio
portfolio
 
V-INSTAL Góra Kalwaria
V-INSTAL Góra KalwariaV-INSTAL Góra Kalwaria
V-INSTAL Góra Kalwaria
 
Plan and create assessments in sa
Plan and create assessments in saPlan and create assessments in sa
Plan and create assessments in sa
 
Plan and create assessments in sa
Plan and create assessments in saPlan and create assessments in sa
Plan and create assessments in sa
 
STG Poznań
STG PoznańSTG Poznań
STG Poznań
 

Similar to Top 10 Critical IT Changes to Audit

Oracle Insurance ERP.ppt
Oracle Insurance ERP.pptOracle Insurance ERP.ppt
Oracle Insurance ERP.pptJd Ash
 
Change auditing: Determine who changed what, when and where
Change auditing: Determine who changed what, when and whereChange auditing: Determine who changed what, when and where
Change auditing: Determine who changed what, when and whereGiovanni Zanasca
 
Improving Healthcare Delivery
Improving Healthcare DeliveryImproving Healthcare Delivery
Improving Healthcare DeliveryDave DeBonis
 
10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks
10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks
10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorksSL Corporation
 
Presentation database security audit vault & database firewall
Presentation database security audit vault & database firewallPresentation database security audit vault & database firewall
Presentation database security audit vault & database firewallxKinAnx
 
Omnibus - Kovair Proprietary ESB Platform
Omnibus - Kovair Proprietary ESB PlatformOmnibus - Kovair Proprietary ESB Platform
Omnibus - Kovair Proprietary ESB PlatformKovair
 
CASE STUDY: UK NATIONAL HEALTH SERVICE
CASE STUDY: UK NATIONAL HEALTH SERVICECASE STUDY: UK NATIONAL HEALTH SERVICE
CASE STUDY: UK NATIONAL HEALTH SERVICEForgeRock
 
AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...
AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...
AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...Amazon Web Services
 
Non functional requirements. do we really care…?
Non functional requirements. do we really care…?Non functional requirements. do we really care…?
Non functional requirements. do we really care…?OSSCube
 
Characerizing and Validating QoS in the Emerging IoT Network
Characerizing and Validating QoS in the Emerging IoT NetworkCharacerizing and Validating QoS in the Emerging IoT Network
Characerizing and Validating QoS in the Emerging IoT NetworkHans Ashlock
 
Aplication data security compliances
Aplication data security compliancesAplication data security compliances
Aplication data security compliancesAhmadi Madi
 
Zero to ten million daily users in four weeks: sustainable speed is king
Zero to ten million daily users in four weeks: sustainable speed is kingZero to ten million daily users in four weeks: sustainable speed is king
Zero to ten million daily users in four weeks: sustainable speed is kingplumbee
 
How to Restructure Active Directory with ZeroIMPACT
How to Restructure Active Directory with ZeroIMPACTHow to Restructure Active Directory with ZeroIMPACT
How to Restructure Active Directory with ZeroIMPACTQuest
 
How to Restructure and Modernize Active Directory
How to Restructure and Modernize Active DirectoryHow to Restructure and Modernize Active Directory
How to Restructure and Modernize Active DirectoryQuest
 
Version1 database-managed-services-brochure
Version1 database-managed-services-brochureVersion1 database-managed-services-brochure
Version1 database-managed-services-brochureVersion 1
 
Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...
Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...
Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...Fishbowl Solutions
 
API’s and Micro Services 0.5
API’s and Micro Services 0.5API’s and Micro Services 0.5
API’s and Micro Services 0.5Richard Hudson
 
Billable hours (public)
Billable hours (public)Billable hours (public)
Billable hours (public)James Makumbi
 
Assessing New Databases– Translytical Use Cases
Assessing New Databases– Translytical Use CasesAssessing New Databases– Translytical Use Cases
Assessing New Databases– Translytical Use CasesDATAVERSITY
 
How to achieve Continous Delivery
How to achieve Continous DeliveryHow to achieve Continous Delivery
How to achieve Continous DeliveryGeoffrey Vandiest
 

Similar to Top 10 Critical IT Changes to Audit (20)

Oracle Insurance ERP.ppt
Oracle Insurance ERP.pptOracle Insurance ERP.ppt
Oracle Insurance ERP.ppt
 
Change auditing: Determine who changed what, when and where
Change auditing: Determine who changed what, when and whereChange auditing: Determine who changed what, when and where
Change auditing: Determine who changed what, when and where
 
Improving Healthcare Delivery
Improving Healthcare DeliveryImproving Healthcare Delivery
Improving Healthcare Delivery
 
10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks
10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks
10 Crucial Steps to Ensuring Performance of TIBCO BusinessWorks
 
Presentation database security audit vault & database firewall
Presentation database security audit vault & database firewallPresentation database security audit vault & database firewall
Presentation database security audit vault & database firewall
 
Omnibus - Kovair Proprietary ESB Platform
Omnibus - Kovair Proprietary ESB PlatformOmnibus - Kovair Proprietary ESB Platform
Omnibus - Kovair Proprietary ESB Platform
 
CASE STUDY: UK NATIONAL HEALTH SERVICE
CASE STUDY: UK NATIONAL HEALTH SERVICECASE STUDY: UK NATIONAL HEALTH SERVICE
CASE STUDY: UK NATIONAL HEALTH SERVICE
 
AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...
AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...
AWS re:Invent 2016: Continuous Compliance in the AWS Cloud for Regulated Life...
 
Non functional requirements. do we really care…?
Non functional requirements. do we really care…?Non functional requirements. do we really care…?
Non functional requirements. do we really care…?
 
Characerizing and Validating QoS in the Emerging IoT Network
Characerizing and Validating QoS in the Emerging IoT NetworkCharacerizing and Validating QoS in the Emerging IoT Network
Characerizing and Validating QoS in the Emerging IoT Network
 
Aplication data security compliances
Aplication data security compliancesAplication data security compliances
Aplication data security compliances
 
Zero to ten million daily users in four weeks: sustainable speed is king
Zero to ten million daily users in four weeks: sustainable speed is kingZero to ten million daily users in four weeks: sustainable speed is king
Zero to ten million daily users in four weeks: sustainable speed is king
 
How to Restructure Active Directory with ZeroIMPACT
How to Restructure Active Directory with ZeroIMPACTHow to Restructure Active Directory with ZeroIMPACT
How to Restructure Active Directory with ZeroIMPACT
 
How to Restructure and Modernize Active Directory
How to Restructure and Modernize Active DirectoryHow to Restructure and Modernize Active Directory
How to Restructure and Modernize Active Directory
 
Version1 database-managed-services-brochure
Version1 database-managed-services-brochureVersion1 database-managed-services-brochure
Version1 database-managed-services-brochure
 
Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...
Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...
Fishbowl Solutions Webinar: A Path, Package, and Promise for WebCenter Conten...
 
API’s and Micro Services 0.5
API’s and Micro Services 0.5API’s and Micro Services 0.5
API’s and Micro Services 0.5
 
Billable hours (public)
Billable hours (public)Billable hours (public)
Billable hours (public)
 
Assessing New Databases– Translytical Use Cases
Assessing New Databases– Translytical Use CasesAssessing New Databases– Translytical Use Cases
Assessing New Databases– Translytical Use Cases
 
How to achieve Continous Delivery
How to achieve Continous DeliveryHow to achieve Continous Delivery
How to achieve Continous Delivery
 

More from Netwrix Corporation

How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureNetwrix Corporation
 
Auditing Active Directory to Comply with State and Federal Regulations
Auditing Active Directory to Comply with State and Federal RegulationsAuditing Active Directory to Comply with State and Federal Regulations
Auditing Active Directory to Comply with State and Federal RegulationsNetwrix Corporation
 
Auditing Solution Enables Coaching of Staff and Pleases Auditors
Auditing Solution Enables Coaching of Staff and Pleases AuditorsAuditing Solution Enables Coaching of Staff and Pleases Auditors
Auditing Solution Enables Coaching of Staff and Pleases AuditorsNetwrix Corporation
 
Automated De-provisioning of Inactive Users Accounts
Automated De-provisioning of Inactive Users AccountsAutomated De-provisioning of Inactive Users Accounts
Automated De-provisioning of Inactive Users AccountsNetwrix Corporation
 
USB Port Protection that Hardens Endpoint Security and Streamlines Compliance
USB Port Protection that Hardens Endpoint Security and Streamlines ComplianceUSB Port Protection that Hardens Endpoint Security and Streamlines Compliance
USB Port Protection that Hardens Endpoint Security and Streamlines ComplianceNetwrix Corporation
 
How the World's Largest Date Agriculture Company "Planted" File Server Auditing
How the World's Largest Date Agriculture Company "Planted" File Server AuditingHow the World's Largest Date Agriculture Company "Planted" File Server Auditing
How the World's Largest Date Agriculture Company "Planted" File Server AuditingNetwrix Corporation
 
Ensuring Data Protection by controlling the Use of Removable Media
Ensuring Data Protection by controlling the Use of Removable MediaEnsuring Data Protection by controlling the Use of Removable Media
Ensuring Data Protection by controlling the Use of Removable MediaNetwrix Corporation
 
Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...
Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...
Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...Netwrix Corporation
 
Active Directory Change Auditing in the Enterprise
Active Directory Change Auditing in the EnterpriseActive Directory Change Auditing in the Enterprise
Active Directory Change Auditing in the EnterpriseNetwrix Corporation
 
Extending Change Auditing to Exchange Server
Extending Change Auditing to Exchange ServerExtending Change Auditing to Exchange Server
Extending Change Auditing to Exchange ServerNetwrix Corporation
 
Staying Abreast of Group Policy Changes
Staying Abreast of Group Policy ChangesStaying Abreast of Group Policy Changes
Staying Abreast of Group Policy ChangesNetwrix Corporation
 
The Business Case for Account Lockout Management
The Business Case for Account Lockout ManagementThe Business Case for Account Lockout Management
The Business Case for Account Lockout ManagementNetwrix Corporation
 
Exchange Auditing in the Enterprise
Exchange Auditing in the EnterpriseExchange Auditing in the Enterprise
Exchange Auditing in the EnterpriseNetwrix Corporation
 

More from Netwrix Corporation (15)

How to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT InfrastructureHow to Effectively Audit your IT Infrastructure
How to Effectively Audit your IT Infrastructure
 
Auditing Active Directory to Comply with State and Federal Regulations
Auditing Active Directory to Comply with State and Federal RegulationsAuditing Active Directory to Comply with State and Federal Regulations
Auditing Active Directory to Comply with State and Federal Regulations
 
Auditing Solution Enables Coaching of Staff and Pleases Auditors
Auditing Solution Enables Coaching of Staff and Pleases AuditorsAuditing Solution Enables Coaching of Staff and Pleases Auditors
Auditing Solution Enables Coaching of Staff and Pleases Auditors
 
Automated De-provisioning of Inactive Users Accounts
Automated De-provisioning of Inactive Users AccountsAutomated De-provisioning of Inactive Users Accounts
Automated De-provisioning of Inactive Users Accounts
 
USB Port Protection that Hardens Endpoint Security and Streamlines Compliance
USB Port Protection that Hardens Endpoint Security and Streamlines ComplianceUSB Port Protection that Hardens Endpoint Security and Streamlines Compliance
USB Port Protection that Hardens Endpoint Security and Streamlines Compliance
 
How the World's Largest Date Agriculture Company "Planted" File Server Auditing
How the World's Largest Date Agriculture Company "Planted" File Server AuditingHow the World's Largest Date Agriculture Company "Planted" File Server Auditing
How the World's Largest Date Agriculture Company "Planted" File Server Auditing
 
Ensuring Data Protection by controlling the Use of Removable Media
Ensuring Data Protection by controlling the Use of Removable MediaEnsuring Data Protection by controlling the Use of Removable Media
Ensuring Data Protection by controlling the Use of Removable Media
 
Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...
Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...
Leading Emergency Software Solution Provider Automates HIPAA and SOX Complian...
 
Active Directory Change Auditing in the Enterprise
Active Directory Change Auditing in the EnterpriseActive Directory Change Auditing in the Enterprise
Active Directory Change Auditing in the Enterprise
 
Extending Change Auditing to Exchange Server
Extending Change Auditing to Exchange ServerExtending Change Auditing to Exchange Server
Extending Change Auditing to Exchange Server
 
Staying Abreast of Group Policy Changes
Staying Abreast of Group Policy ChangesStaying Abreast of Group Policy Changes
Staying Abreast of Group Policy Changes
 
The Business Case for Account Lockout Management
The Business Case for Account Lockout ManagementThe Business Case for Account Lockout Management
The Business Case for Account Lockout Management
 
Exchange Auditing in the Enterprise
Exchange Auditing in the EnterpriseExchange Auditing in the Enterprise
Exchange Auditing in the Enterprise
 
File Auditing in the Enterprise
File Auditing in the EnterpriseFile Auditing in the Enterprise
File Auditing in the Enterprise
 
File auditing on NetApp Filer
File auditing on NetApp Filer File auditing on NetApp Filer
File auditing on NetApp Filer
 

Top 10 Critical IT Changes to Audit

  • 1. #1 for Change Auditing Simple, Efficient, Affordable Top 10 Critical Changes to Audit in Your IT Infrastructure Bob Bobel, Director of Product Management E-mail: bob.bobel@netwrix.com Twitter: @rbobel LinkedIn: www.linkedin.com/in/robertbobel #1 for Change Auditing Simple, Efficient, Affordable
  • 2. Agenda • Understand WHY you need to audit • Define key audit requirements • Identify the 10 most critical changes to audit • Introduction to NetWrix Change Reporter Suite • Demonstration • Why NetWrix? • Questions #1 for Change Auditing Simple, Efficient, Affordable
  • 3. Why you need to Audit • Security - Changes in security settings may have unexpected consequences • Unauthorized Access - Prevention of Data theft, files and email • Troubleshooting - it worked before, what happened? • Root Cause Analysis - The system is broken, what lead to this? • Admin Activity & Delegation Permissions- Hold all Admins accountable • Change Control Management • Compliance - PCI, SOX, HIPAA, etc. #1 for Change Auditing Simple, Efficient, Affordable
  • 4. Solution Requirements 1. Automated collection 2. Use of diverse audit data sources (single-source = less detail) 3. Filtering and consolidation (no log noise) 4. Centralized securable storage for short and long- term 5. Flexible Reporting 6. Shows 4Ws: (WHO, WHAT, WHEN, WHERE) 7. Shows BEFORE and AFTER detail clearly #1 for Change Auditing Simple, Efficient, Affordable
  • 5. Solution Requirements (continued) • Centralized secure auditing • Simply and efficiently display key WHO, WHAT, WHEN and WHERE changes details with both BEFORE and AFTER values • Efficient sort term and long term storage of audit & configuration data • Enterprise Scalability #1 for Change Auditing Simple, Efficient, Affordable
  • 6. Solution Requirements (continued) • Predefined reports (Not offered natively) • Compliance-ready reports • Report customization • Report subscriptions • Simple to read output #1 for Change Auditing Simple, Efficient, Affordable
  • 7. Top-10 Critical Changes and Activities 1. Active Directory: Group Memberships 2. Group Policy: Password Policy 3. Exchange: Message store 4. Mailbox access by non-owners 5. Windows Server: Local Users and Groups 6. File Servers: Access Attempts and Changes 7. SQL: Security and roles 8. Router and Firewall changes 9. Virtual environment changes 10. User Logon/Logoff Activity #1 for Change Auditing Simple, Efficient, Affordable
  • 8. Introducing… NetWrix Change Reporter Suite Unified Auditing for Key IT Systems • Simple – Easy to use, installs in minutes & built on NetWrix Change Reporter AAA platform • Efficient - lightweight architecture without dangerous agents or OS level drivers • Affordable - modular and part of the NetWrix Enterprise Suite #1 for Change Auditing Simple, Efficient, Affordable
  • 9. Features and Benefits Audit data we collect AuditAssurance™ • Configuration • Native Events • Other Scalable Storage • The Backbone of reporting • Normalized the 4W details of Who, What, When and Where across systems and applications AuditIntellegence™ • Searchable and supports custom reports #1 for Change Auditing Simple, Efficient, Affordable
  • 10. Features and Benefits Analysis & Reporting • Pre-built reports many designed from customer feedback • View on-screen, over the Web, Export in various formats & subscriptions for automation • Clearly displays 4W detail Who, What, When and Where • Uses Microsoft SQL Reporting Services #1 for Change Auditing Simple, Efficient, Affordable
  • 11. Features and Benefits AuditArchive™ • Configurable Retention Policy – Store years of data, competitors may only store months of data • Can be accessed when needed for historical purposes (import) #1 for Change Auditing Simple, Efficient, Affordable
  • 12. NetWrix AAA Platform Technology • AuditAssurance™ technology consolidates audit data from multiple independent sources, filling-in key details not present in any single source. • AuditIntelligence™ technology provides a complete audit picture by transforming raw audit data into meaningful and actionable intelligence. • AuditArchive™ technology provides long-term archiving, making your data available for historical reporting and forensics analysis. #1 for Change Auditing Simple, Efficient, Affordable
  • 13. #1 for Change Auditing Simple, Efficient, Affordable Demonstration #1 for Change Auditing Simple, Efficient, Affordable
  • 14. Others who chose NetWrix Financial Federal, State & Local Government • ING Direct • Columbia University • Forex Capital Markets • Bureau of National Affairs • Berkshire Hathaway • State of Maine • Zurich Financial Services • NYC Dept. of Transportation • Thomson Reuters • US District Court, SDNY • Fiserv • Massachusetts Port Authority • Alaska State Legislature Healthcare & Pharmaceutical • Columbia University • Vertex Pharmaceuticals • Verizon Business Systems • Blue Cross of Idaho • Black & Decker • Berkeley National Laboratory • Universal NBC • National Institute of Health (NIH) • US Military Academy • Massachusetts General Hospital • WebMD #1 for Change Auditing Simple, Efficient, Affordable
  • 15. NetWrix Suites All-in-One Suite Change Reporter Suite IDM Suite Active Directory SharePoint Password Manager Object Restore SQL Server Password Expiration Group Policy Windows Server Notifier Exchange VMware Logon Reporter Mailbox Access Event Log Manager Inactive Users Tracker File Servers Activity Recorder NetApp & EMC FREE Trials at www.netwrix.com #1 for Change Auditing Simple, Efficient, Affordable
  • 16. Protect your investment • Upgrade to any suite = 100% credit applied from any prior license purchase • New product additions to suites are provided to you at no charge so long as support and maintenance fees are current #1 for Change Auditing Simple, Efficient, Affordable
  • 17. Next Steps… • Download a FREE TRIAL at www.netwrix.com – Trial license is included with the download – Support is provided during trial period • Virtual POC – Virtual TestDrive™ is available in some areas – Online server allows you to quickly understand the incredible value of our software #1 for Change Auditing Simple, Efficient, Affordable
  • 18. #1 for Change Auditing Simple, Efficient, Affordable Thank you For more information visit www.netwrix.com Bob Bobel, Director of Product Management E-mail: bob.bobel@netwrix.com Twitter: @rbobel LinkedIn: www.linkedin.com/in/robertbobel #1 for Change Auditing Simple, Efficient, Affordable

Editor's Notes

  1. AuditAssurance™ technology consolidates the audit data from multiple independent sources (event logs, configuration snapshots, change history records, etc.), and therefore is able to detect a change even if one or more of the sources does not contain all the required data. AuditIntelligence™ technology transforms raw audit data into meaningful and actionable intelligence to drive security and compliance efforts and delivers human-readable reports designed with administrators and auditors in mind to paint the most complete picture.