Features

 

Security Management

 

100% Web-based

Management Packs

Asset Tracking

AutoAction

AutoAnomaly

AutoClear

AutoLookup

AutoMap

Built-in Remote
Control Tools

Capacity Planning

Escalation

Event Correlation

Highly Scalable

Integrated Tools

Intelligent Alarm Engines

Monitoring

Notification

Performance Trending and Capacity Analysis

Protocol Analysis

Reports

Roles & Permissions

Security
      Management

Service Groups

SLA Management

Views

Web Transaction Monitoring

Web-based Console

Website Statistics

Workflows

Enterprise Security Management

ViewITpro provides Enterprise Security Management (ESM) functionality normally achieved only through the purchase of multiple security monitoring solutions. ViewITpro includes the following ESM functions:

Host Configuration Management

ViewITpro has complete auto-discovery, asset tracking, and configuration management built-in. Upon auto discovery, the configurations of servers and network devices are stored in the ViewITpro database. ViewITpro performs scheduled auto-discoveries and creates a change log which documents discrepancies between and changes in configurations for monitored devices. ViewITpro detects potential threats and unwanted changes and alerts the system or network administrator via pager, email, the ViewITpro Management Center portal, and via trouble-ticket in the ViewITpro Ticketing (or third party ticket integration).

ViewITpro Network IDS

The ViewITpro IDS appliance is linked to the security industry’s best real-time databases for tracking ongoing threats, prioritization, and remediation procedures and tactics. In real-time, the ViewITpro IDS inspects network traffic and identifies over 1200 attack signatures and prioritizes them based on industry expert rankings and information obtained from The SANS Institute

(http://www.sans.org), The Federal Bureau of Investigation (http://www.fbi.gov) vulnerability list; SecurityFocus (http://www.securityfocus.com ) Vulnerability Database; WhiteHats.Org database, The National Infrastructure Protection Center (http://www.nipc.gov/), InfraGard (http://www.infragard.net/), and CERT (http://www.cert.org/).

Automated links to the following industry sites are created so that ViewITpro security engineers can perform the necessary research and remediation steps. If actions are required, they will be implemented as quickly and safely as best-practices allow.

      http://www.whitehats.org
      http://www.securityfocus.com
      http://www.cve.mitre.org

ViewITpro Host IDS

ViewITpro proactively monitors the security event logs, syslogs, su logs, and other login and access event logs indigenous to the appropriate device. ViewITpro can proactively detect failed login attempts and access to forbidden resources.

Consolidated event log monitoring, security event log example:

Sample Security Event Alarm: