McAfee Change Control

McAfee Change Control delivers continuous detection of system-level changes being made across distributed and remote locations, and uniquely provides change prevention that blocks unauthorized changes to critical system files, directories, and configurations. Change Control tracks and validates every attempted change in real time on your server, enforcing change policy by a time window, source, or approved work ticket. This continuous control minimizes the impact from ad hoc or unauthorized changes.

Improved compliance management — Unauthorized changes can violate policies, leading to possible outages and material weakness in compliance standards. Change Control provides categorical management, enabling IT to fulfill and validate compliance requirements efficiently and cost effectively. This supports many compliance standards, including PCI and SOX, as well as healthcare and energy industry requirements. It is flexible enough to enforce corporate policies as part of an overall Governance, Risk & Compliance (GRC) solution.

Streamlined monitoring and control — Change Control is operationally friendly and allows for normal system changes to seamlessly occur. It delivers the capability to create and deploy new policies that take effect immediately for targeted field or data center servers. With the McAfee ePolicy Orchestrator (ePO) platform, you can set change policy profiles, specify change event notifications, and prioritize alerts — all from a single console. Continuously monitor and get alerts to unauthorized changes, while enforcing stronger policies to prevent changes to critical server files, directories, and configurations. Change Control lowers risk, reduces the cost of reacting to unauthorized changes, and eases the implementation of new compliance requirements.

Features

Get continuous file integrity monitoring

Capture all changes to files and allow administrators to quickly identify where policies are being challenged. McAfee Change Control delivers continuous monitoring that captures server name, file name, time of change, change type, and change content. An intuitive search interface helps users quickly hone in on change event information.

Ensure change prevention

Block out-of-policy changes before they occur. Change prevention capabilities are linked directly to policy, and changes are verified against the change source, time window, or approved change ticket. Changes that are attempted outside of policy on enabled servers are not allowed, but are logged and can be sent as alerts.

Configure easily for compliance

Increase the availability of services. Change Control accelerates the successful implementation of Information Technology Infrastructure Library (ITIL) projects and reduces the cost of compliance initiatives such as SOX, PCI DSS, and many others.

Integrate with other solutions easily

Incorporate Change Control with other change management, data center automation, and configuration management solutions.

Requirements

For a complete list of system requirements, see the Platform Support Matrix.