What s New in Netwrix Auditor 9.5 Presenter: Jeff Melnick Systems Engineer Jeff.Melnick@netwrix.com
Housekeeping All attendees are on mute Ask your questions! Questions will be answered during the session or at the Q&A at the end You will receive a copy of slides and webinar recording in the follow-up email Duration: Up to 60 minutes Type your question here Click Send We hope you enjoy!
WHAT S NEW IN NETWRIX AUDITOR 9.5 Risk Assessment Behavior Anomaly Discovery Permission Analysis API-Enabled Integrations
IT Risk Assessment Identify and prioritize risks to make smarter IT security decisions and close security holes
IT Risk Assessment. What s That? A set of interactive dashboards Actionable intelligence to identify and close security gaps Based on State-in-Time data
IT Risk Assessment
IT Risk Assessment. Risk Levels ACCEPTABLE PAY ATTENTION TAKE ACTION File names containing sensitive data No file names that suggest sensitive data is inside One file with a name suggesting that sensitive data is inside Multiple files with names suggesting that sensitive data is inside Potentially harmful files on file shares No executables on file shares One executable on file shares Several executables on file shares User accounts with administrative privileges A small proportion of users have administrative privileges A significant proportion of users have administrative privileges A large proportion of users have administrative privileges
IT Risk Assessment. Use Cases! Initial Clean Up Periodic Assessments Compliance checks
Behavior Anomaly Discovery Analyze all abnormal activity of a user in one place to improve detection of rogue insiders and compromised accounts
Behavior Anomaly Discovery. How Does It Work? Harmful executable created Assigned risk score: 60 60 Alert is included in Behavior Anomaly Discovery Alert triggered User account disabled Alert sent to admin by email
Behavior Anomaly Discovery
Behavior Anomaly Discovery. Workflow Identify threat actors Continuous process Especially valuable for bigger enterprises with dedicated IT security specialists Adjust risk scores Investigate anomalies
Permission Analysis Review access rights and revoke the excessive permissions to mitigate the risk of privilege abuse
Permission Analysis in AD
Permission Analysis in AD. Use Cases Regular Privilege Attestations! Investigating Permissions of High-Risk Accounts Verifying That Only Admins Can Modify AD Objects
Permission Analysis in Windows Server
API-Enabled Integrations Automate incident management workflows and maximize visibility into your Linux environment
New API-Enabled Integrations Add-on for ServiceNow Incident Management Provide initial incident support and enable faster and more accurate incident investigation. Add-on for Privileged User Monitoring on Linux and Unix Systems Promptly identify and respond to improper behavior in your *nix-like systems by gaining full control over privilege activity. Add-on for Generic Linux Syslog Spot, investigate and block threats to your Linux systems with a single-pane view of what s happening there.
Other Major Improvements
Major Improvements Reporting on Windows Server software and computer inventory Improved data collection in Netwrix Auditor for Windows Server Enhancements to custom reports New predefined alerts and alert tagging Health log is now available in UI Add-on for Cisco now supports all Cisco networking devices
Netwrix Auditor Demonstration
Netwrix Auditor Applications Netwrix Auditor for Active Directory Netwrix Auditor for Azure AD Netwrix Auditor for Exchange Netwrix Auditor for Office 365 Netwrix Auditor for Windows File Servers Netwrix Auditor for EMC Netwrix Auditor for NetApp Netwrix Auditor for SharePoint Netwrix Auditor for Oracle Database Netwrix Auditor for SQL Server Netwrix Auditor for Windows Server Netwrix Auditor for VMware
Netwrix Customers Financial Healthcare & Pharmaceutical Federal, State, Local, Government GA Industrial/Technology/Other
Industry Awards and Recognition All awards: www.netwrix.com/awards
Next Steps Free Trial: setup in your own test environment: On-premises: netwrix.com/freetrial Virtual: netwrix.com/go/appliance Cloud: netwrix.com/go/cloud Test Drive: run a virtual POС in a Netwrix-hosted test lab netwrix.com/testdrive Webinars: join our upcoming webinars and watch the recorded sessions netwrix.com/webinars And Microsoft Surface goes to The winner will be announced during the webinar or a few days after the webinar.
Thank you Thank You! Presenter: Jeff Melnick Systems Engineer Jeff.Melnick@netwrix.com