Security Policy Management Software | Security Auditor

Security Auditor centralizes security administration across your cloud, on premise, or hybrid environment. Our agentless technology allows you to quickly enforce security policy adherence and mitigate the risks of security misconfiguration, a leading cause of data breaches. Security Auditor automatically protects new systems as they come online and continuously monitors those systems, identifying any configuration settings that don’t match your requirements. You'll be notified of any policy exceptions and can make changes yourself from an easy-to-use, web-based console, which simplifies tasks and compliance reporting requirements. Or if you prefer more automation, you can run the FixIt function and let Security Auditor do the work for you.

Protect Your Data with Security Policy Management

Security Auditor

Auto Discovery

Security Auditor simplifies the identification and security configuration for your elastic cloud infrastructure by detecting new systems as they come online and by automatically applying the proper security controls.

Continuous Monitoring

Gain complete visibility into avoidable security errors by continuously monitoring your systems against your security policy. Security Auditor notifies you in real time of any policy exceptions.

Automatic Remediation

Save time with automated security administration. When out-of-compliance settings are found, you have the choice to fix them or let Security Auditor do it for you automatically.

File Integrity Monitoring

Receive alerts for any changes to file content, attributes, permissions or access rights you can take immediate action and help maintain compliance.

How Security Auditor Works

The wrong security settings in cloud environments often lead to data breaches. In fact, many cloud security professionals see system misconfiguration as the biggest cybersecurity threat. Public cloud makes it easy to deploy new systems whenever you want, but that makes visibility and enforcement of security policies almost impossible for security staff. And IT teams don't have time to properly configure and audit security profiles in these environments.

Security Auditor helps provide security and IT teams with the visibility and automation they need to ensure their cloud environments are properly secured at all times. Security Auditor automatically protects cloud servers and they data they house from the moment they are brought into the IT stack.

Key Features

Secure SSH Connections

Secure SSH connections from the Security Auditor console to your systems ensures that no data flows in clear text and no passwords are ever stored.

Agentless Installation

Manage servers easily and efficiently with agentless technology.

Centralized Web-Based Console

See what is happening across your entire environment from one centralized web-based console.

Policy Discrepancy Remediation

It’s one thing to identify a full list of security policy exceptions across your servers, and another to actually resolve all of them. No security administrator has time for such an onerous, manual task. Security Auditor has the power to both find and fix discrepancies across your servers—resulting in a more secure system in less time.

After Security Auditor identifies cases in which your actual settings do not match your defined policy, the software uses the FixIt feature to automatically remedy policy exceptions. You can schedule FixIt to run at selected times or on the fly, and the software will log changes made in a report which you can easily save and distribute. With Security Auditor, complying with your security policy is quick and easy, allowing you to avoid security threats that might have otherwise lurked on your system unnoticed for months.

Automated Security Administration

When settings must be changed manually or by using scripting across multiple servers, the logistics of complying with your security policy become impractical and not auditable. From changing server settings to running compliance checks, you can take tedious and time-consuming security administration tasks off your plate and let software handle them automatically.

Streamlined Compliance Reporting

Reduce the burden on your administrators to provide compliance and audit reports across all of your systems. From a central console, Security Auditor allows you to monitor changes and run reports without the hassle of consolidating data across multiple servers or involving your operations staff. Security Auditor logs all checks, out-of-compliance settings, and fixes so that you have a complete audit trail.

View Product Datasheet

[Security Auditor] reminds me of any policy exceptions every day, so nothing slips through the cracks. We're doing more with less, and we don’t want to go looking for the problems, we want them to come to us. [Security Auditor] accomplishes that for us.

Lead Systems Support Specialist, Amway

Secure Your Cloud Deployments

Security Auditor seamlessly integrates with public, private, and hybrid cloud deployments, including Amazon EC2 and S3. Security Auditor discovers the systems in your cloud infrastructure as they are created and then applies security settings to protect your cloud systems properly. Over time, Security Auditor continues to monitor and audit your configurations, making sure that your cloud systems are effectively secured from malicious attackers and inadvertent data breaches. Get information on blacklisted services, critical system file changes, remote access settings, and more.

Integrate Security & DevOps

Security Auditor gives you the visibility and security that your management teams require. As your DevOps team deploys systems to your on premise or cloud environment, including Amazon EC2 servers, Security Auditor will automatically apply security controls and audits, instantly reporting on what it finds. No matter what regulatory framework you are working with, Security Auditor’s automatic application of security controls will alert you to vulnerabilities and misconfigurations.

Controls can be applied differently to different groups of systems based upon your preferences. For example, use one set of configurations for development systems and a more stringent configuration set on your production deployments. If desired, Security Auditor can even automatically change non-compliant findings to the desired configuration settings.