DO YOU
NEED TO
DEMONSTRATE
NIST
COMPLIANCE?
OBSERVEIT’S USER ACTIVITY
MONITORING SOLUTION HELPS
ORGANIZATIONS SATISFY SPECIFIC
NIST REQUIREMENTS.
E
ven the smallest NIST violation can have far-reaching consequences for U.S.
citizens, organizations and National Security. With the recent increase of
cybersecurity threats and attacks, maintaining a framework for improving critical
infrastructure and enhancing cybersecurity policies is more detrimental to the Nation’s
economy and public safety than ever before.
ObserveIT can help any organization satisfy NIST
requirements within minutes. With detailed logs and
visual recordings of all user activity – on every server,
workstation and application – ObserveIT meets even
the strictest interpretation of NIST requirements with
conclusive evidence for compliance auditors. These
audit reports can be completed in a fraction of the time,
with the ability to instantly search, analyze and view the
actual video-like playback of any session.
1 - ID.GV
IDENTIFY / GOVERNANCE
NIST requires that all cybersecurity policies, procedures and processes are
understood and managed by all, including legal and regulatory requirements such as
privacy and civil liberties obligations.
ObserveIT offers a “just-in-time-policy messaging” feature that delivers important
messages and updates about corporate policies in general, or for specific applications
and servers. This ensures that all users have read and agreed to the relevant security
policies and procedures before logging on, and are aware of both general and
specific policies.
2 - PR.AC
PROTECT / ACCESS CONTROL
Eliminate the question of who-did-what as ObserveIT provides a unique identification
and audit trail of every individual logged in on your server.
When logging into a server using a shared-user account, ObserveIT presents a
secondary identification window, where that user must sign in with their second set of
credentials in order to access the server. Video recordings and activity logs are then
tied to that specific user. Therefore, ObserveIT identifies all individual users logging in
to servers using generic ‘administrator’ or other shared accounts.
3 - DE.CM
DETECT / SECURITY CONTINUOUS
MONITORING
ObserveIT offers continuous monitoring capabilities that record and audit every
privileged account session, remote access activity, and offers zero-gap recording of
Windows and Unix/Linux sessions over any remote connection protocol plus local
console.
ObserveIT also provides real-time session activity monitoring with remote session lock,
capable of detecting unusual user behavior, events, unauthorized code, connections,
devices and software. Custom alerts are based on definable activity triggers.
4 - RS.AN
RESPOND / ANALYSIS
To manage risk, NIST requires that organizations understand the likelihood that an event
will occur and the resulting impact. Rather than obscure technical details of system event
log, ObserveIT offers granular, searchable textual activity logs linked to video playback of
all user activity.
ObserveIT generates bulletproof forensic evidence, offering full video recording and
playback of every configuration change made, by who, and when. Replaying each user
session on the problematic server will show you exactly what to undo and provide insight
of how to prevent those changes from happening again in the future.
5 - RC.RP
RECOVER / RECOVERY PLANNING
By eliminating doubt and enhancing visibility, restoring affected systems can be done
in record time. Keyword-searchable activity logs and textual session summaries free up
time for compliance officers who can incorporate ObserveIT in their reporting process,
and IT managers who use ObserveIT for root-cause-analysis. This allows them the time
and money to streamline troubleshooting for future events.