Auditing and Monitoring
Maintain a Secure Infrastructure
Industry standards such as the PCI DSS, and other mandates require that the critical IT infrastructure is maintained by regularly updates to critical security components, and by following a change control policy on critical system components.The SSH Tectia platform enables centralized management of its components, enabling you to maintain an up-to-date inventory of deployed software versions, and by monitoring the configurations and security policies for unauthorized local changes. This enables you to prove to your auditors that your critical business environment is maintained, and monitored for any rogue software installations or policy changes.
Managed File Transfer Auditing
Your most critical business processes often involve large numbers of file transfers and other data operations. Being able to monitor these for early reaction to failures, accountability, and non-repudiation, and for capacity planning is a key capability for ensuring reliable and cost-effective business operations.The SSH Tectia file transfer auditing capabilities give you the tools to provide reports for your management, auditors, troubleshooting, and planning needs. SSH Tectia Managed File Transfer components also have the capability to send out alerts when key operations experience failures, or other thresholds are met. This enables you to react to events and changes in your operational environment quickly, and with minimized downtime, resource, and overhead costs.
Accountability, Traffic Inspection, and Forensics
Industry standards such as the PCI DSS, and other mandates require system administration connections, and other critical operations to be executed via a secure channel such as the Secure Shell protocol. They also require strict accountability, and a minimized set of access privileges to be imposed on those connections.The SSH Tectia platform allows you to enforce strict access controls and service limitation on both the local managed hosts, and also independently of them, on the actual encrypted connections. Server logs are gathered both on the local host and to a centralized log depository, and this is complemented by inspecting and archiving full sessions on an external audit point completely independent of the client and server hosts, for analysis and playback in error situations and other incidents. This ensures true accountability, as the auditing is done independently from the monitored hosts, and of the users with administration privileges.
SSH Tectia is also capable of channeling critical traffic to Intrusion Detection and Data Loss Prevention systems, enabling inspection of even encrypted traffic greatly expanding the range of security controls that can be applied to it. Now there are no more roadblocks to encrypting your most sensitive traffic in any part of your environment!
