McAfeeWorks.com is a McAfee SecurityAlliance Premier Partner

McAfee - Antivirus Software and Intrusion Prevention Solutions.McAfee Change Control

Enforce change policy by time window, source, or approved ticket

 

McAfee Change Control Overview:

In many IT organizations, a gap persists between authorized and documented change, and actual change activity. McAfee Change Control bridges this gap by providing real-time visibility of changes being made, accountability to validate change activity, and technology-based enforcement of change policy to prevent unwanted or unauthorized changes.

Description:

Critical IT systems such as financial systems and those running mission-critical IT services are usually governed by complex policies that define the proper procedure for making a change. These policies may include the proper procedure for approving changes, the correct approval authorities for different types of changes, in what time windows approved changes are to be implemented, and who/what applications are allowed to implement changes. Administrators often make changes that violate these policies without realizing the impact of their actions. Such violations can cause outages and cause material weaknesses in compliance standards, such as Sarbanes-Oxley and PCI DSS.

McAfee Change Control turns policy into reality by automatically enforcing change policies on enforcement-enabled servers. When a change attempt is made, it is first examined to see if it conforms to the defined policy, and if it does, the change is implemented on the system. If any out-of-policy change is attempted, it is blocked and a record is made of the change attempt. If blocking is not desirable, the system can also be configured to allow a change, and send out a policy alert in real-time, as well as provide detailed reporting.

 

Benefits and Features:

 

Benefits:

  • Reduce operational costs
    By reducing the manual effort to track and account for changes made to systems, and by proactively preventing unauthorized or inappropriately applied changes, McAfee Change Control reduces outages, security breaches and compliance violations that result in additional IT cost
     
  • Gain real-time visibility into changes happening across the entire IT infrastructure
    McAfee Change Control allows you to track changes in real-time, so you’ll always know what is happening across the infrastructure. You can even search the real-time change database for rapid root-cause analysis.
     
  • Increase accountability for employees and outsourced IT providers
    Ensure changes are made according to authorized policy and process. McAfee Change Control provides automatic and accurate monitoring of actual changes, and identifies any changes made outside of policy.
     
  • Enforce change policy and processes
    McAfee Change Control ensures that only in-process changes are allowed by proactively blocking out-of-process and unwanted changes to systems before they occur
     
  • Enforce emergency change processes
    Unexpected incidents sometimes dictate the escalation of changes that have not been pre-approved, but still need to be executed. McAfee Change Control provides visibility into the emergency change activity for auditing purposes, and can enforce an emergency change process.

Features:

  • Real-time file integrity monitoring
    McAfee Change Control captures all changes to files, and allows administrators to quickly identify where policies are being challenged. Real-time monitoring captures server name, file name, time of change, change type, and change content.
     
  • Benchmarking
    McAfee Change Control allows you to benchmark  your servers by performing configuration assessments using Center for Internet Security (CIS) supplied benchmarks, which help identify configuration settings that are insecure
     
  • Change prevention
    Change prevention capabilities within McAfee Change Control block out-of-policy changes before they occur. Protection is linked directly to policy, and changes are verified against the change source, time window, or approved change ticket. Changes that are attempted outside of policy on enabled servers are not allowed, but are logged and can be sent as alerts.
     
  • Alerts in real-time
    For increased visibility, McAfee Change Control delivers real-time alerting for exceptional changes, as well as customizable dashboards and reports that illustrate change patterns that affect compliance, security, and availability
     
  • Configures easily
    McAfee Change Control is easily configurable to increase the availability of IT services, accelerate the successful implementation of Information Technology Infrastructure Library (ITIL) projects, and reduce the cost of compliance initiatives such as Sarbanes-Oxley (SOX) and the Payment Card Industry Data Security Standard (PCI DSS)
     
  • Integrates easily
    McAfee Change Control integrates with change management, data center automation, and configuration management database (CMDB) solutions from HP, BMC, IBM, and others

System Requirements:

Supported Operating Systems (OS)

  • Windows XP
  • Windows XPE
  • Windows Vista
  • Windows XP (64-bit/AMD64)
  • Windows 2003/2008 (64-bit/AMD64)
  • Windows Vista (64-bit/AMD64)
  • Windows XP (64-bit/IA64)
  • Windows 2003/2008 (64-bit/IA64)
  • Windows Vista (64-bit/IA64)
  • Windows CE 6.0
  • Red Hat EnterpriseLinux 3/4/5
  • CentOS 4/5
  • SUSE Enterprise Linux 9/10
  • Oracle Enterprise Linux 5
  • Solaris 8/9/10
  • HP-UX 11.00/11.11/11.23
  • AIX 5.2/5.3
  • IBM i5/OS (AS400) V5R3/V5R4/V6R1
  • IBM 4690 OS V5

 

 

Home | Products | Search | View Cart | Shipping | Return Policy | Terms & Conditions | Privacy Policy | Contact Us

McAfeeWorks.com is a division of Virtual Graffiti Inc, an authorized McAfee reseller.
Copyright © 2003-2010 McAfee, Inc. All Rights Reserved.