Webinar: Real IT Compliance with SolarWinds

@solarwinds
Real-Time IT Compliance with SolarWinds
Federal and Government Webinar
June 25, 2019

@solarwinds 2
Speaker Introduction
Yuli Mikolenko
Sr. Federal Sales Engineer
yuli.mikolenko@solarwinds.com
703.386.2649 (office)
Rich Roberts
Sr. Federal Sales Engineer
richard.roberts@solarwinds.com
703.386.2650 (office)
© 2019 SolarWinds Worldwide, LLC. All rights reserved.

@solarwinds 3
• SolarWinds Overview
• Our approach to security and security product overview
• Leveraging automation to improve responsiveness
• Automation features of SolarWinds products
• Demonstrations
• Q&A
• Additional resources
Agenda

@solarwinds 4
SolarWinds at a Glance
1. Customers are defined as individuals or entities that have an active subscription for our subscription products or that have purchased one or more of our perpetual license products since our inception under a unique customer identification number. We may have multiple
purchasers of our products within a single organization, each of which may be assigned a unique customer identification number and deemed a separate customer.
2. IDC defined Network Management Software functional market, IDC’s Worldwide Semiannual Software Tracker, October 2018.
3. Source: Gartner, Market Share Analysis: ITOM: Performance Analysis Software, Worldwide, 2017. July 9, 2018. (AIOps/ITIM/Other Monitoring Tools Software Market ). SolarWinds term, Systems Management, refers to the AIOps/ITIM/Other Monitoring Tools Software
Market Taxonomy referenced in the Gartner report. All statements in this report attributable to Gartner represent SolarWinds interpretation of data, research opinion or viewpoints published as part of a syndicated subscription service by Gartner, Inc., and have not been
reviewed by Gartner. Each Gartner publication speaks as of its original publication date (and not as of the date of this [presentation]). The opinions expressed in Gartner publications are not representations of fact and are subject to change without notice.
#1
in Network
Management2
300,000+
customers in 190
countries1
50+
IT management
products
22,000+ MSPs serving
450,000+ organizations
Every branch of the DoD, and
nearly every civilian and
intelligence agency
150,000+ registered members of THWACK®, our global IT community
Founded in 1999
More than 2,500
employees globally
Austin, TX, headquarters
Herndon, VA, government office
30+ offices globally
Leader
in remote monitoring
and management
#4
in Systems
Management3
Growing security
portfolio
499 of
Fortune 500®

@solarwinds 5
Building Great Products That Simply Work Is at Our Core
End User-Driven Product Strategy With a Constantly Growing OfferingFocused on Ease and Efficiency
Geekbuilt®
Roadmap driven by end-users and products developed by
IT Professionals who understand today’s IT environment
Massive User Community
150K+ registered THWACK members; in 2017,
THWACK averaged over 7,000 daily unique visitors
22K+ MSPs access the MSP Institute
and Customer Success Center
Solve clearly identified problems
Orion®
Platform
Hybrid IT
management
Application
Management
Affordable full-stack
monitoring for hybrid and
cloud-native IT
environments
SolarWinds
MSP
Remote monitoring
and management
platforms, backup,
and email security
Easy to try, find, and buy
Ready to use
Security
Security, simplified

@solarwinds 6
Our Approach to ProductOurCorePrinciplesNotableExamples
Simple and
powerful
Deliver complete
visibility for hybrid IT
Grow with our
customers
Enable application-
centric management
•Quick value after install
•Seamless UX across
product portfolio
•Native support of the major
on-premises and public clouds
•Unified, integrated experience
•Start small, solve the first
problem, and be ready for
the next
•Add new capabilities quickly
• AppStack™ – manage the entire
app, not just components
• PerfStack™ – real-time
troubleshooting across the
modern app and infrastructure
stack
• NetPath™ – manage the network, not
just elements
• Cloud Infrastructure Monitoring –
AWS® and Azure® infrastructure
monitoring
•Support management of
traditional and modern apps
• Network Insight™ – deep
visibility for the modern
network stack across
performance and
configuration
• AppInsight™ – deep visibility
for packaged application
performance
• Increased scale – support for
400,000 NPM elements in a
single instance
• Simplified multiproduct
installer – single installer to
automatically resolve upgrade
and install dependencies

@solarwinds
Make security simple, powerful, and affordable
The SolarWinds Approach to Security
Asset management
Business environment
Governance
Risk assessment
Risk-management strategy
Access control
Awareness training
Data and security protection
Processes and procedures
Patch management
Vulnerability assessment
Anomalies and events
Continuous security monitoring
Recovery planning
Learning and improvement
System restoration
Communications
Response planning
Incident response
Communications
Analysis
Mitigations
“Framework Resources,” NIST. https://www.nist.gov/image/framework-01png (Accessed March 2019)

@solarwinds
SolarWinds Security Products Overview
Identify Protect Detect Respond Recover
Patch Manager
Windows® and third-party patching, asset inventory, and reporting
Security Event Manager
SIEM tool for threat detection, incident response, and compliance reporting
Patch Manager
Patch compromised systems
Access Rights Manager
Manage and audit user access rights across your infrastructure
Sever Configuration Monitor
HW and SW asset inventory
Detect unauthorized changes
View previous configurations
Network Configuration Manager
Automates management of network configurations and helps ensure compliance and backup status
User Device Tracker
Detect and locate rogue users and devices on your network
NetFlow Traffic Analyzer
Find suspicious network activity
Serv-U MFT
Secure file transfer and sharing
Backup
Easy web-based backups
Backup
Restore data and systems
Threat Monitor
SaaS-based threat detection, incident response, and compliance reporting

@solarwinds 9
Leveraging Automation to Improve Responsiveness
• Automation improves responsiveness to IT threats by reducing or eliminating manual
processes
• e.g., An alert could be used to start a script and shutdown a port or user
• Automation can help organizations comply with regulations, mandates, and policies
• e.g., Eliminate configuration changes or errors by reverting any changed configurations to their
approved baseline config
• Real-time information is important
• Active responses can be key

@solarwinds 10
Automation Features of SolarWinds Products
• Detects out-of-process configuration changes, audits configurations, and even corrects violations
Security Event Manager
• Provides cross-platform event processing, notification, and remediation
NetFlow Traffic Analyzer
• Support for port 0 monitoring and alert on flow traffic thresholds per protocol
Log Analyzer
• Provides real-time log streaming and visualization to help identify the root cause and reduce
troubleshooting
OrionSDK
• Utilize our SDK and query language to sync with external applications and tools

@solarwinds 11
Automated network configuration, change, and compliance
• Automated change management to push approved, standardized config changes to devices
• Maintain policy compliance using continuous configuration auditing and remediation
• Monitor configurations to detect and reverse unwanted config changes
• Automated config backups help restore operations
• Monitor and audit network devices from a single view
• Automate compliance management with config reporting and policy violation scans
• National Vulnerability Database integration provides access to current CVE’s to identify
vulnerabilities in your Cisco devices
• Leverage centralized administration to prevent unauthorized access, delegate who can view
device details and make configuration changes, and determine when network changes can occur

@solarwinds
Detect and respond to security threats using a powerful, affordable, easy-to-use SIEM tool
Security Event Manager Overview
• Real-time event correlation from network devices,
servers, applications, and more for rapid detection of
malicious activity
• Active Response actions to respond to threats, including
killing processes, detaching USB devices, and logging
users off
• Real-time log stream with fast search and filtering
within a new HTML5 interface
• Out-of-the-box compliance rules and reports for
standards, such as FISMA, STIGs, HIPPA, and PCI DSS
• Threat intelligence: Monitor for bad IP addresses known
for ransomware, malware, and phishing in your logs
• File integrity monitoring: Identify suspicious activity
taking place on sensitive files and directories

@solarwinds 13
NetFlow analyzer and bandwidth monitoring software
NetFlow Traffic Analyzer (NTA)
• Get alerted if application traffic suddenly
increases, decreases, or disappears completely
• Increase security with visibility into malicious or
malformed traffic with port 0 monitoring
• Monitor bandwidth use by application, protocol,
and IP address group
• Monitor wireless LAN controller traffic to keep
tabs on applications and clients utilizing
bandwidth on your wireless network
• Multivendor device support
• NetFlow v5, NetFlow v9, sFlow v2, v4, v5,
IPFIX, J-Flow, and Huawei® NetStream® data

@solarwinds 14
Aggregate, search, and chart log data within the Orion Platform
Log Analyzer
• See log data in real time with an interactive chart
and graph
• Collect, consolidate, and analyze thousands of
syslog, traps, Windows®, and VMware® events to
perform root-cause analysis
• Orion Platform integration supports the use of
intelligent alerts to provide customizable alerts
along with delivery options including email
notification, ServiceNow® integration, and the
triggering of an external script

@solarwinds 15
Intro to SolarWinds API, SDK, SWQL, and SWIS
• Application Programming Interface (API)
• Software Development Kit (SDK)
• SolarWinds Query Language (SWQL)
• SolarWinds Information Service (SWIS)
• See THWACK blog series
• https://thwack.solarwinds.com/community/solarwinds-community/product-
blog/blog/2018/01/17/intro-to-api-sdk-swql
• REST/JSON web service: call from any environment
• https://github.com/solarwinds/OrionSDK

@solarwinds 16
Leverage the Orion API to integrate with other tools
Orion Software Development Kit (SDK)
• Orion SDK lets users leverage the Orion API to retrieve data from an Orion
server and to populate data in an Orion server
• It helps advanced users accomplish tasks such as auto-provisioning the
management of new devices in their environments
• The SDK offers direct access to portions of the SolarWinds Information
Service (SWIS) using SQL-like queries in SolarWinds Query Language (SWQL)
• SolarWinds supports the SDK and API through the SolarWinds community
forum
• Users can get feedback and advice from SolarWinds architects and other
developers (customers) using the SDK on the THWACK forum
https://thwack.solarwinds.com/community/it-resources/orion-sdk
• Currently in version 2.5, the SDK is included in our standard release cycle

@solarwinds 18
Compliance Resources
Let us know how we can help you
• View a webpage on IT compliance management
• Read a KBA on NCM compliance policy reports
• View a SEM use case on HIPAA compliance for IT
• View a topics page on NIST FISMA Compliance with Continuous Monitoring Tools
• Review a blog on how SolarWinds software can help with NIST FISMA/RMF compliance
• Review a blog on how SolarWinds software can help with DISA STIGS compliance
• Watch a federal security compliance video
• Download a white paper Compliance Guide for Federal Security and IT Pros
• Download a white paper on Daily Federal Compliance and Continuous Cybersecurity
Monitoring

@solarwinds
Q&A
19
Call government sales:
877.946.3751
Email your sales team:
federalsales@solarwinds.com
governmentsales@solarwinds.com
educationsales@solarwinds.com

@solarwinds 20
Additional Resources
Let us know how we can help you
• Visit our THWACK government group: http://thwack.com/government
• Watch a short demo video: http://demo.solarwinds.com/sedemo/
• Download a free trial: http://www.solarwinds.com/downloads/
• Visit our government website: http://www.solarwinds.com/federal
• Call government sales: 877.946.3751
• Email SolarWinds federal government sales: federalsales@solarwinds.com
• Email SolarWinds state and local government sales: governmentsales@solarwinds.com
• Email SolarWinds education sales: educationsales@solarwinds.com
• Follow us on LinkedIn®: https://www.linkedin.com/company/solarwinds-government

@solarwinds
The SolarWinds, SolarWinds & Design, Orion, and THWACK trademarks are
the exclusive property of SolarWinds Worldwide, LLC or its affiliates, are
registered with the U.S. Patent and Trademark Office, and may be
registered or pending registration in other countries. All other SolarWinds
trademarks, service marks, and logos may be common law marks or are
registered or pending registration. All other trademarks mentioned herein
are used for identification purposes only and are trademarks of (and may be
registered trademarks) of their respective companies.

Webinar: Real IT Compliance with SolarWinds

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Webinar: Real IT Compliance with SolarWinds

Similar to Webinar: Real IT Compliance with SolarWinds (20)

More from SolarWinds

More from SolarWinds (15)

Recently uploaded

Recently uploaded (20)

Webinar: Real IT Compliance with SolarWinds

Editor's Notes