Audit and Control
For information assurance, Configuration Management can be defined as the management of security features and assurances through control of changes made to hardware, software, firmware, documentation, test, test fixtures, and test documentation throughout the life cycle of an information system.
The Software Configuration Management(SCM) process further defines the need to trace changes, and the ability to verify that the final delivered software has all of the planned enhancements that are supposed to be included in the release. It identifies four procedures that must be defined for each software project to ensure that a sound SCM process is implemented. They are:
- Configuration identification
- Configuration control
- Configuration status accounting
- Configuration audits
We work with the following brands that can help customers to establish the above tasks:
| Vendor Brand |
Configuration Assessment |
Change Control |
Compliance Policy Management |
Security Information Events Management |
Configuration Audit |
| AlertLogic |
|
|
|
 |
|
| BeyondTrust |
|
|
|
|
|
| Lanscope |
|
|
|
|
|
| Log Rhythm |
|
|
|
|
|
| McAfee |
|
|
|
|
|
| Stealthbits |
|
|
|
|
|
| TripWire |
|
|
|
|
|
|
