Continuous Audit

Datapipe offers real-time monitoring and alerting on any deviation of a known and trusted system state.

Your solution will be evaluated and hardened against industry standard benchmarks such as  PCI  and CIS , for operational, regulatory, and security policy compliance. You will be alerted in real time of any deviation from a secure state so compliance can be maintained.

System Integrity

System integrity monitoring is used to detect and report on system changes so they can be tracked and validated. Datapipe's System Integrity Monitoring service provides real-time reporting of file system changes including files, security settings, configuration parameters and permissions, to ensure that all changes are planned and verified and that all unauthorized changes are investigated.

How it works

• The host based system integrity agent monitors, alerts, and reports on any changes to critical computing resources in real time.
• Change detection rules can be added, removed, or customized per solution.
• Default change detection rules will be applied based on operating system to detect critical system changes.
• In collaboration with the client, the Datapipe security team will determine what file system locations contain application code and/or other sensitive data so that client specific change detection monitoring can be configured.

Change response procedures

Upon detecting a change, the Datapipe security team and the client receive a real time change report via email with detailed information on the change including who, what, and when the change was made.

The Datapipe security team will respond and escalate in accordance with pre-defined policies and procedures.

Change events can also be collected and correlated for client access using a secure web based interface.

Configuration Assessment

Datapipe utilizes Tripwire Configuration Assessment services to provide the highest levels of security which ensure compliance with key standards and regulations. Tripwire doesn’t just detect change like so many simple file integrity monitoring products, or assess configuration information every once in a while. Instead, Tripwire determines if a detected change was expected and authorized, and if the same change was in compliance with policy. It does this on a continuous basis and generates alerts and remediation advice when the answer to either question is “no”. Continuous detection and analysis of change to critical system, configuration or content files can dramatically reduce the risk and duration of malicious change.

How it works

The host based agent leveraged in Datapipe's System Integrity Monitoring service will take a baseline of a system after being hardened against any regulatory compliance standards such as PCI. Baselines only occur once or after a major system configuration change.

After a system is baselined, the agent will perform real time compliance checks to determine if the system is still in compliance after a monitored change occurs. The Datapipe support team, managed technician (if applicable), and client will receive a real time Compliance Failure email detailing what system changes caused non-compliance, when the change was made and by whom. The Datapipe security team will immediately follow the client's  SEAP (Solution Escalation Action Plan) for escalation procedures to resolve non-compliant configuration issues.

Customized Assessments

Clients will receive Weekly Policy Scorecard reports via email. These reports indicate the degree to which monitored systems comply with established policies. Clients will also receive Monthly Compliance History reports via email. These reports show the total number of changes detected on selected monitored systems that fall within a specified range of severity levels.

Our clients can fully customize what reports they receive and the details of those reports.