Netwrix Auditor for Network Devices: insider threats detection and investigation05 Dec 2018
Netwrix announced the release of Netwrix Auditor for Network Devices as a part of the new Netwrix Auditor 9.7 platform. The application enables organizations to detect and investigate network security threats and is targeted at network specialists, IT administrators, IT managers and security analysts.
Netwrix Auditor for Network Devices enables organizations to reduce the risk of attackers taking control of critical network infrastructure or insiders inadvertently or deliberately jeopardizing security. With the application, IT professionals can:
- Detect and investigate scanning threats and other attacks. Promptly spot and investigate any outliers in the typically minimal user activity around network devices. This includes authorized attempts to log in directly or via VPN, as well as suspicious changes aimed at manipulating traffic to and from network or masking illegitimate access to critical systems.
- Enforce strong and effective controls for network security. Comply with requirements of regulations and best practices frameworks such as PCI DSS, NIST and CIS Critical Security Controls by monitoring access to network devices and changes to their configurations.
- Minimize costly network downtime. Reduce the time required to detect and respond to hardware issues and unauthorized changes that violate established network segmentation settings, jeopardizing the performance and security of the network.
Netwrix Auditor is a visibility platform for user behavior analysis and risk mitigation that enables control over changes, configurations and access in hybrid IT environments to protect data regardless of its location. The platform provides security intelligence to identify security holes, detect anomalies in user behavior and investigate threat patterns in time to prevent real damage.