NetIQ has announced the latest versions of its Sentinel Security Information and Event Management (SIEM) and Change Guardian privileged user activity monitoring solutions.
NetIQ Sentinel 7.2 and Change Guardian 4.1 collectively monitor the people, identities, accounts and interactions with data that ultimately predict a threat or identify a breach.
In a statement NetIQ said customers using NetIQ Sentinel 7.2 will benefit from new threat intelligence feeds that help customers protect their networks and sensitive data from widely used botnets, including SpyEye and Zeus.
Besides, the solution also brings greater NetFlow traffic analysis, which help customers quickly detect malware and investigate suspicious network traffic.
Meanwhile, new features in Change Guardian 4.1 offer customers deeper integration with Active Directory (AD) identity stores and expanded file integrity monitoring (FIM) capabilities.
The new features allow IT teams to quickly detect threats and respond to audits faster and at a lower cost of ownership.
Renee Bradshaw, senior solution manager at NetIQ said: “This is foundational to an Identity-Powered Security strategy. By integrating identity data to identify connections between privileged users and potentially suspicious behaviors, these solutions help security organizations cut through event noise and avoid fighting a battle on the last lines of defense – at the data level – when sensitive company data has most likely already been compromised or stolen.”
Sentinel 7.2 and Change Guardian 4.1 are generally available today worldwide and offered on a subscription or perpetual license basis.
