Novell® Sentinel™
Policy Enforcement That Makes You Compliant
It's not just a reporter; it's also an enforcer. Based on your policies, Sentinel™ can actually respond to incidents as they occur. Automated incident response management enables you to document and formalize the process of tracking, escalating and responding to incidents and policy violations, and provides the ability to create a trouble ticket directly in another system, such as Remedy. This functionality lets you demonstrate your compliance with internal policies and industry and government regulations such as SOX, HIPAA, GLBA, FISMA, and others.
Sentinel features and modules that provide policy enforcement and threat remediation:
The powerful iTRAC workflow in Sentinel enables you to respond proactively to incidents by automating and enforcing incident identification and resolution processes. IT managers get a complete "system of record" for tracking and reporting remediation of security or compliance incidents. Workflows can be tailored to fit your organization's specific remediation processes and requirements.
Sentinel's Event Source Management functionality makes managing collectors easier, and simplifies and streamlines deployment.
The Sentinel Collector Manager delivers a richer event stream by injecting business-relevant data before events are correlated and analyzed.
A richer event stream means Sentinel is correlating data with the business context required to identify and remediate internal or external threats and policy violations. Sentinel Collector Manager has an easy-to-use, drag-and-drop interface to help you to create rules-based Collectors to gather, filter and normalize data from any source and securely communicate relevant information to the Sentinel Control Center. It enables users to quickly and efficiently develop and configure Collectors to monitor any source. Moreover, users can:
- Quickly create, manage, and deploy collectors to all enterprise systems
- Connect any IT asset to the Sentinel Control Center
- Write and customize rules on the fly
- Embed best practices and business rules to address unique security management and compliance monitoring requirements.
JavaScript Collectors provide richer data manipulation functionality and the ability to process double-byte/Unicode data.
Sentinel Solution Designer incorporates Sentinel correlation rules, dynamic lists, maps, reports, and iTRAC workflows into controls. Each control can include a description of the requirement it was designed to fulfill, as well as the implementation and testing steps required to ensure that the control is working as expected. The Solution Designer then packages a set of controls into a single Solution Pack, creating an integrated solution to solve a specific business problem.
The Sentinel Solution Manager is designed to manage Solution Packs provided by Novell as well as custom packages created using the Solution Designer. Combinations of Sentinel content are managed as integrated controls, simplifying the process of installing, implementing, and testing the Sentinel system.
The Sentinel Advisor provides centralized security intelligence for proactive resolution of new vulnerabilities. Sentinel Advisor contains a comprehensive and timely collection of known threats and vulnerabilities. Coupled with iTRAC, Sentinel Advisor provides unmatched real-time threat mitigation and policy violation prevention.
Sentinel Advisor cross-references real-time Sentinel alert data with known vulnerabilities and automated remediation process, bridging the gap between incident detection and response. With Sentinel Advisor, organizations can determine if events exploit specific vulnerabilities and how these attacks impact their assets.
Recommended Reading
For more information see: