ManageEngine has added a security and risk posture management dashboard to Log360, its unified SIEM solution.
The new feature is designed to spot configuration flaws and other hidden dangers in Active Directory environments by comparing current settings to security baselines recommended by Microsoft, Center for Internet Security (CIS) standards, and ManageEngine itself.
“With the introduction of more regional compliance mandates, aligning security and compliance is more crucial than ever and has become an important conversation in board meetings. Security and risk posture management—a proactive security strategy—is an integral part of many compliance requirements,” said Manikandan Thangaraj, ManageEngine’s vice president, in a media statement.
“ManageEngine has augmented its unified SIEM solution with security and risk posture management that allows enterprises to gain visibility into the current risk posture of their network resources. This helps identify critical loopholes and vulnerabilities that, if exploited, can cause significant damage. Furthermore, the feature helps curb account compromise and misconfigurations, two of the most commonly used techniques for launching an attack,” Thangaraj added.
Once in place, the new dashboard continuously monitors an organization’s Active Directory and assigns it a zero to 100 percent score based on how closely it complies with pre-established, customizable rules built around recognized best practices. The system also flags any risks it identifies, indicates their severity, and provides remediation advice. Technicians can receive email notifications about their security posture at scheduled intervals as well.
Together with Log360’s optional machine-learning-based user and entity behavior analytics (UEBA) feature, ManageEngine says, the security and risk management feature offers comprehensive protection against account compromise and identity theft.
The new functionality adds a further layer of protection to a solution that also includes integrated data loss prevention (DLP), cloud access security broker (CASB), compliance management, and security orchestration, automation, and response (SOAR) features, plus threat intelligence, threat hunting, and real-time attack detection functionality designed to identify potential threats by correlating suspicious log entries.
Pricing is based on the number of domain controllers, Windows servers and workstations, and syslog devices the system monitors.
ManageEngine is a division of Zoho Corp. that also makes a wide variety of security, endpoint management, and cloud management solutions for MSPs and corporate IT departments.