Friday, 10 November 2006

New NetIQ Solutions to Streamline Incident Response

NetIQ Corporation, a business unit of Attachmate, has unveiled NetIQ Security Manager (SM) 5.6 and NetIQ Secure Configuration Manager (SCM) 5.6, formerly known as NetIQ Vulnerability Manager.

The convergence of technology to create an automated incident management capability is an emerging trend. According to Gartner, through 2008, Security Information and Event Management (SIEM) technologies will expand capabilities to provide a pre-incident vulnerability and threat assessment view of the IT environment. This will enable enterprises to implement tools that support the full incident timeline, from pre-incident policy creation and assessment, incident auditing and monitoring through post-incident forensics and historical analysis.

According to the company, features and enhancements of NetIQ SM 5.6 include:

• User Interface: produces customised views of security data captured from multiple sources, including real-time events, consolidated log files, OLAP cubes and summary event data
• Improved Access Control: supports multiple user roles during incident response without compromising administrator integrity
• Reporting Flexibility: allows for creation and viewing of reports based on audience and priority

• Exceptions Management: allows enterprises to manage discovered policy exceptions, or waivers, based on business practicalities
• Trouble Ticket Integration: integrates with ticketing systems to provide IT Operations sufficient information to triage, invoke and track remediation processes
• Enhanced Reporting: automates baseline reporting to detect configuration drift or compromised assets