Change Tracker™ Gen7 R2

NNT Change Tracker Gen7 R2 provides critical and fundamental cyber security prevention and detection. It does this by leveraging the required security best practice disciplines of system configuration and integrity assurance combined with the most comprehensive and intelligent change control solution available. Change Tracker from NNT will ensure that your IT systems remain in a known, secure and compliant state at all times.

NNT Change Tracker includes context-based File Integrity Monitoring and File Whitelisting to assure all change activity is automatically analyzed and validated. Complete and certified CIS and DISA STIG configuration hardening ensures all systems remain securely configured at all times and, coupled with the most intelligent change control technology, provides unparalleled change noise reduction along with the ultimate reassurance that the changes occurring within your production environment are consistent, safe and as required.

Additional Info

In addition to the unrivalled feature set, NNT Change Tracker is the most certified and integrated solution of its type. NNT integrates with all leading ITSM vendors to provide the most sophisticated closed loop intelligent change control system as well as integrations with all leading SIEM solutions to assist with correlation and context of events as well as invaluable incident response detail. Change control can only be effective when integrated with change management processes. This unique combination of features underpins NNT’s overall SecureOps solution set.

Independent research has indicated that 91% of ALL security breaches can be auto-detected by utilizing tools, techniques and detective controls included in Gen7 R2.

Change Tracker Features And Benefits

Automates CIS Controls
Spot cyber threats, identify any suspicious changes and adjust the secure baseline for all of your systems in real-time with NNT Change Tracker™ Gen7R2. Approve changes to the authorized baseline with a simple point and click.

Breach Prevention
Ensure all IT assets are secure and breach free at all times by leveraging state of the art, recommended security and configuration hardening settings along with real-time system vulnerability and configuration drift management.

Breach Detection
Change Tracker™ Gen7 R2 identifies suspicious activity using highly sophisticated contextual change control underpinned by threat intelligence to spot breach activity while reducing change noise.

Real-Time Contextual File Integrity Monitoring
Change Tracker™ intelligently analyzes all changes in real-time leveraging the world’s largest repository of independently verified whitelisted files combined with intelligent and automated planned change rules to significantly reduce change noise and deliver a true FIM solution.

System Hardening & Vulnerability Management
Minimize your attack surface with continuous and real-time clear configuration guidance and remediation based on CIS and other industry standard benchmarks for system hardening and vulnerability mitigation guidance.

Continuous Compliance Monitoring Across all Industries
NNT provides comprehensive tailored or pre-built reports to provide vital evidence to security staff, management and auditors of the ongoing and improving state of your organizations secure and compliant posture.

New Features and Functionality

All new Dashboard, fully customizable with choice of widgets and multiple tabs for alternative Dashboard layouts
‘Single-Page Application’ design gives a contemporary, super-responsive Change Tracker experience

New Wizard Guides, guided setup for common admin operations
New universal Query/Report controls, consistently available, enables reports to be built ‘off the page’
New Reports Center – build and schedule any reports, with graphically-rich content, including all new Executive Report showing overall security of your estate

‘Expert Event Analysis’ sections for reports, with events automatically pre-analyzed to show ‘noisiest’ devices, paths, registry settings and any other monitored configuration attributes to aid decision making in your Change Control Program
Report production now performance optimized, even large volume event reports are generated on a streamed basis to minimize impact on Hub server resources
Report properties can be tailored – include a hyperlinked Table of Contents, Event Details table and Query Parameters, together with as many/few event attributes as required
New Group & Device/Date & Time filter and selection control panel, selections persist for any page accessed, panel can be hidden when not in use to give a ‘full screen’ display of the Dashboard
User-defined auto-refresh settings for all pages

New Device page layout, condensed Event Stream and Configuration panels facilitate a comprehensive ‘at a glance’ overview of all Device information
New Planned Change page design, full range of filters to provide clear access to your planned changes, overlaid with new Query/Report controls to provide direct access to Planned Change event reports
New componentized Planned Changes, allowing easy re-use of schedules and/or rulesets, driven by a new Planned Change Wizard for easy, guided schedule and rule set-up
New ‘FAST list’ planned change rule option, ensures only file changes you select as permitted, allows a user-defined list of approved file changes to be operated – like a personal FAST Cloud!
Full updated new web controls for improved user experience

Gen7 R2 has the ability to reduce change noise by more than 90% leaving only changes that are unknown, unwanted, unexpected or malicious in nature.

NNT Unique Competitive Differences

Noise Reduction through Integration & Automation - Unique ability to differentiate expected vs unexpected changes that increases an organizations security posture while minimizing the risk of operational downtime.

Digital DNA Reference - NNT’s FAST Cloud is the world’s largest database of known and trusted files and applications (whitelist).

Scalability - Devices supported under a single console is unlimited.

Manageability - A single console managing countless platforms with intuitive policy management that simplifies an organizations ability to mitigate security risk while increasing operational availability.

The World's most scalable integrity monitoring solution: Mega-Scale Change Control

Operating at a forensic level within the IT infrastructure,
Change Tracker™ works across all popular platforms such as:

Platforms

Windows, all versions including Server 2019, 2016 and Windows 10, XP, 2003/R2, Windows 7, Windows 8/8.1, 2008R2, 2012/R2 (Core and GUI)
Linux, all versions, including Ubuntu, SUSE, CentOS, RedHat, Oracle, FreeBSD and Apple MAC OS
Unix, all versions including Solaris, HPUX, AIX, Tandem Non-Stop
Virtualization and Container Servers, all versions including ESXi, Docker and Kubernetes
Database Systems, including Oracle, SQL Server, DB2, PostgreSQL, My SQL
Network Devices and Appliances, all types and manufacturers, including routers, switches and firewalls, from Cisco, Nortel, Juniper, Fortinet and Checkpoint

Activity Monitored

Detecting and alerting to any suspicious activity that may represent a security or performance threat, Change Tracker™ audits and monitors changes to:

files, file contents, file attributes and folder structures
file secure hash value, to give a unique DNA Fingerprint for each file, essential to detect Trojan malware
running processes (checked against blacklists and whitelists)
Windows registry keys and values
installed applications and patches
local and domain user accounts
services' startup and running states
windows audit and security policy settings
configuration settings for audit and security policy
command line process output, for example a netstat query
open network ports, both UDP and TCP scanned externally on a scheduled basis
enforces CIS Benchmark Checklists for vulnerability mitigation
Username and Process used to make file changes

Core Functionality

In the first instance, Change Tracker™ enables an organization to bring IT systems into compliance with a 'known good and secure' state using 'out of the box' or user-definable vulnerability and build-standard auditing policies. Once IT systems are considered to be within compliance of your required hardened build standard, as well as configured and set up properly, Change Tracker™ then uses non-stop, continuous configuration auditing and change tracking to ensure they remain that way. If something does change, Change Tracker™ will immediately report what changed, when, by whom and crucially, whether that change was part of a Planned Change. Dynamic Compliance Dashboards also provide 'at a glance' reassurance of your continued safe and compliant state.