Products and services

Security Policy Enforcement

Securing information assets protection also involves security policy enforcement on individual systems that provide for information system (IS) operation. Regular checkups of individual IS components give real information on the current security configuration status. The checkup can be carried out using automated tools, or manually. Especially large systems require utilization of an appropriate tool, which can simply and quickly identify all security configuration changes.
Security policy enforcement instruments can test individual systems and determine security risks along with an effective proposal for their elimination. It is particularly security risk elimination proposals that bring an important value added in the process of preserving defined security configuration, thereby allowing the security administrator to immediately respond to disparities between required and current configuration status. When combined properly with auditing tools you get a complex security administrator’s tool controlling the approved security parameter configuration for individual systems.
Regular testing of server security parameter configuration against the baseline (approved security policy) allows a substantial reduction, or even elimination of security risks on individual systems, thus directly supporting accessibility, confidentiality and integrity of stored data.
Benefits from the deployment of security policy enforcement systems:

increased data protection security
preservation of defined security level
prevention of potential intrusion
control over making operation system changes
overall view of the system status within the IS
effective reporting of operating system security status