SoftControl Change Monitoring is a tool for the secure operation of information systems and compliance with industry regulatory requirements.
Continuous real-time monitoring of file and registry integrity to enable rapid response to changes.
Scheduled file and registry integrity monitoring, including at operating system startup, for system audit purposes.
Provides mechanisms for comparing file and registry contents and attributes at different points on the timeline, enabling the purpose of a change to be quickly identified from a single centralized source.
Creation and centralized storage of shadow copies of files for change tracking.
Maintaining a baseline reference point and tracking deviations from predefined reference states.
Flexible configuration of rules and exclusions with the ability to import policies. PCI DSS policies are provided out of the box.
Monitoring of configuration files and security parameters for PostgreSQL, MySQL/MariaDB, and other DBMSs using ready-made settings/policies.
FIM (File Integrity Monitoring) – Uses dynamic monitoring methods to detect changes to monitored files, registry keys, and policies in real time. It creates shadow copies of file contents, calculates checksums, records the state and attribute values of monitored objects, and transfers this data to the management server. The solution records who made the change, when it occurred, how it was performed, and what exactly was modified. In addition to real-time monitoring, it also supports scheduled and event-driven integrity monitoring.
IMP (incident management process) – Maintains a complete change history of monitored objects, enabling security officers to compare object attributes and contents across different points in time from a single console. This allows incidents to be quickly investigated and accurately classified based on reliable forensic data.
SCM (security configuration management)Detects deviations in the configuration of files, registry keys, and policies from the approved baseline. It maintains a comprehensive audit trail of configuration changes affecting information systems and security controls, providing auditors with complete evidence of compliance with regulatory security requirements.