NNT Change Tracker Version 6.5 has now been certified for the CIS Benchmark for SUSE Linux Enterprise Server 11. This means any organization using SUSE LES 11 can use Change Tracker to easily assess how vulnerable to attack their systems are and, using the built-in remediation advice within the reports provided, implement a comprehensive hardened build standard.
The Center for Internet Security is the information security industry's recognized authority for secure configuration intelligence. The CIS Benchmarks provide prescriptive guidance to minimize the Enterprise attack surface across all leading platforms, including operating systems, database systems and applications. All major governance, regulatory and compliance security standards reference CIS Benchmark guidance, including PCI DSS, HIPAA, SOX and FedRAMP, and are often used as a 'second opinion resource' to other secure build standards such as DISA STIG.
Where Change Tracker goes further than traditional vulnerability scanners like Qualys or Nessus is that once a compliance scan has been completed, continuous protection is then provided using real-time file integrity monitoring. This means that any drift from the hardened configuration will be reported before it can be exploited.
Change Tracker provides this continuous protection by monitoring registry keys and values, security policy settings, service and process lists, installed software and all other secure configuration settings. In addition, real-time FIM is applied to the filesystem as a whole, so any malware infection or other breach activity will be reported - even zero-day malware missed by anti-virus products.
CIS awards comprise
- CIS Benchmark for SUSE Linux Enterprise Server 11, v1.0.0, Level 1 Profile
- CIS Benchmark for SUSE Linux Enterprise Server 11, v1.0.0, Level 2 Profile