System i Software

Audit

iSecurity Audit provides real-time monitoring of system related activities and initiates responses to potential threats. Audit can respond to threats in real-time by triggering alerts and taking immediate corrective action. iSecurity Audit gives organizations the flexibility to audit only the critical events they deem necessary, eliminating the fear of DASD usage. iSecurity Audit’s powerful query and report generator provides the data you need in real-time or scheduled through the built in scheduling tool. Audit is available in the native “green-screen” interface or a state-of-the-art GUI version.

The Audit Solution

Recent regulations concerning business transparency have placed security auditing as a key component of any organization’s IT security program. Simply creating a security policy and purchasing security software tools is not enough. Management must ensure that security policies and procedures are properly implemented and enforced. In addition, managers must be able to evaluate and test the effectiveness of these policies on a continuing basis.

iSecurity Audit solves that problem and more. iSecurity Audit enhances native System i auditing by adding several robust new features, and providing a user-friendly interface for working with the large, often complex, number of system values and parameters. Audit is the only security auditing product available that is designed from the ground up for ease-of-use by non-technical personnel, such as outside auditors and managers. The user interface provides clear explanations for all audit types, parameters, fields and field values.

View specific system audit log information

Graphically analyze and report on system audit data

iAudit employs real-time detection to identify security events as they occur and record details in a history log. This log enables you to exploit the powerful query and reporting features that are included with the product. More importantly, real-time detection triggers alerts and/or takes immediate corrective action. Audit offers the most powerful and flexible reporting features available today. It includes more than eighty ready-to-run queries and reports.

The powerful Query Wizard allows users to quickly and easily create audit reports without programming. Queries employ robust selection criteria such as AND/OR, equal/not equal, greater/less than, like/not like, included in list, etc. Only the information that you really need is included. Report formats are fully customizable. In addition, Audit logs display security audit data in a standard message format with the actual data embedded in the message.

Key Features

• Incoming and outgoing TCP/IP address filtering for Internet, FTP, REXEC, Telnet, and DHCP
• Remote system (SNA) firewall protection for DDM, DRDA and Pass-through operations
• Intrusion Prevention System that triggers alerts and proactive responses to the security administrator via MSGQ, email or cell phone
• Customizable password dictionaries containing common or system specific words that cannot be used as passwords
• User Management capabilities containing comprehensive information and management of all user profiles, including sign-on time control
• Terminal screen security that protects unattended terminal screens, including PCs running terminal emulation software, from unauthorized use
• Built-in business intelligence tool that enables IT managers to graphically analyze security related system activity quickly and easily

Benefits

• Monitors user activities and object access in real-time
• Triggers alert messages and corrective actions
• Simple to use - no technical knowledge required
• More than eighty pre-defined queries and reports
• Query Wizard - create queries quickly and easily without programming
• Time groups apply rules and filters at predefined times
• "Backward Glance" feature - quickly look at what happened to your system in the last few weeks
• View multiple audit types with one query
• Sort query data in any order
• Design custom output for query data - select and sort data fields
• Report Scheduler - automatically run reports at specified times
• Explanations for parameters and data values are only a keystroke away
• Audit Scheduler - change audit scope automatically at designed times
• Highly sophisticated IDS (Intrusion Detection System) feature to provide real time alerts, warnings and provide corrective actions to threats in real-time
• Built-in business intelligence tool that enables IT managers to graphically analyze security related system activity quickly and easily

Benefits

• Specially designed for non-technical users such as auditors, managers and administrators
• Enables compliance with Sarbanes-Oxley, HIPAA, the California Privacy Act and more..
• Minimizes throughput delay and resource usage
• Full text explanations of audit types, fields, field values and other data make parameter definition a snap
• Scheduler feature minimizes performance impact during peak periods
• Powerful query and report generator provides the data you need when you need it

Specify which audit entry data you want to monitor