what’s new in netwrix auditor 9what’s new in netwrix auditor 9.5 risk assessment behavior...
TRANSCRIPT
Type your
question
here
Click
“Send”
Housekeeping
• All attendees are on mute
• Ask your questions!
• Questions will be answered during the session or at the Q&A at the end
• You will receive a copy of slides and webinar recording in the follow-up email
• Duration: Up to 60 minutes
• We hope you enjoy!
WHAT’S NEW IN NETWRIX AUDITOR 9.5
Risk
Assessment
Behavior Anomaly
Discovery
Permission
Analysis
API-Enabled
Integrations
IT Risk Assessment_______________________________________
Identify and prioritize risks to make
smarter IT security decisions and
close security holes
IT Risk Assessment. What’s That?
• A set of interactive dashboards
• Actionable intelligence to identify and close security gaps
• Based on State-in-Time data
IT Risk Assessment
File names
containing
sensitive data
No file names that suggest sensitive
data is inside
One file with a name suggesting that
sensitive data is inside
Multiple files with names
suggesting that sensitive data
is inside
Potentially
harmful files
on file shares
No executables on file shares One executable on file sharesSeveral executables on file
shares
User accounts
with administrative
privileges
A small proportion of users have
administrative privileges
A significant proportion of users
have administrative privileges
A large proportion of users
have administrative privileges
ACCEPTABLE PAY ATTENTION TAKE ACTION
IT Risk Assessment. Risk Levels
IT Risk Assessment. Use Cases
Compliance checksPeriodic Assessments
!
✓
✗
✗
✗
✗
Initial Clean Up
Behavior Anomaly Discovery_______________________________________
Analyze all abnormal activity of a user
in one place to improve detection of rogue
insiders and compromised accounts
Behavior Anomaly Discovery. How Does It Work?
Alert triggered
Alert sent to
admin by email
User account
disabled
Harmful
executable createdAlert is included in
Behavior Anomaly
Discovery60
Assigned
risk score: 60
Behavior Anomaly Discovery
Behavior Anomaly Discovery. Workflow
Identify
threat actors
Investigate
anomalies
Adjust risk
scores
• Continuous process
• Especially valuable for bigger enterprises
with dedicated IT security specialists
Permission Analysis_______________________________________
Review access rights and revoke
the excessive permissions to mitigate
the risk of privilege abuse
Permission Analysis in AD
Permission Analysis in AD. Use Cases
Verifying That Only Admins
Can Modify AD Objects
Investigating Permissions
of High-Risk Accounts
Regular Privilege
Attestations
✓!
Permission Analysis in Windows Server
API-Enabled Integrations_______________________________________
Automate incident management
workflows and maximize visibility
into your Linux environment
New API-Enabled Integrations
Spot, investigate and block
threats to your Linux systems
with a single-pane view of
what’s happening there.
Add-on for
Generic Linux
Syslog___________________
Promptly identify and respond
to improper behavior in your
*nix-like systems by gaining full
control over privilege activity.
Add-on for
Privileged User Monitoring
on Linux and Unix Systems______________________________________
Provide initial incident
support and enable faster
and more accurate incident
investigation.
Add-on for
ServiceNow Incident
Management
Other Major Improvements
• Reporting on Windows Server software and computer inventory
• Improved data collection in Netwrix Auditor for Windows Server
• Enhancements to custom reports
• New predefined alerts and alert tagging
• Health log is now available in UI
• Add-on for Cisco now supports all Cisco networking devices
Major Improvements
Demonstration
Netwrix Auditor
Netwrix Auditor Applications
Netwrix Auditor for
Active Directory
Netwrix Auditor for
Windows File Servers
Netwrix Auditor for
Oracle Database
Netwrix Auditor for
Azure AD
Netwrix Auditor for
EMC
Netwrix Auditor for
SQL Server
Netwrix Auditor for
Exchange
Netwrix Auditor for
NetApp
Netwrix Auditor for
Windows Server
Netwrix Auditor for
Office 365
Netwrix Auditor for
SharePoint
Netwrix Auditor for
VMware
GA
Financial
Healthcare & Pharmaceutical
Federal, State, Local, Government
Industrial/Technology/Other
Netwrix Customers
All awards: www.netwrix.com/awards
Industry Awards and Recognition
Next Steps
Free Trial: setup in your own test environment:
On-premises: netwrix.com/freetrial
Virtual: netwrix.com/go/appliance
Cloud: netwrix.com/go/cloud
Test Drive: run a virtual POС in a Netwrix-hosted test lab netwrix.com/testdrive
Webinars: join our upcoming webinars and watch the recorded sessions netwrix.com/webinars
And Microsoft Surface goes to…
The winner will be announced during the webinar or a few
days after the webinar.