Security Reporting

Read the “Hows-and-Whys” of
Security Reporting

“We've greatly improved our security with Auditor Professional by knowing who has access rights and alerting us to file size, checksum, and other system anomalies.”

— CIO and VP of IT
Milwaukee Journal Sentinel

Ecora Auditor Pro Helps you Mitigate IT Security Risks:

  • Generate audit-ready reports that demonstrate compliance
  • Quickly evaluate police compliance status with web-accessible executive dashboard
  • Make changes to critical security configuration setting on individual or multiple servers from a single location
  • Create and maintain standard configuration policies throughout your enterprise
  • Control configuration drift to sustain compliance
  • Identify incorrectly configured servers that create security vulnerabilities

Everyday, someone is looking for ways to exploit your system vulnerabilities – testing organizational security efforts and putting vital data at risk. While a lot of attention is paid to preventing external exploits by using Firewalls, EDS, IPS, and vulnerability monitoring tools, industry surveys consistently identify that most significant exploits are due to system misconfigurations. To significantly reduce the vulnerability to internal exploits, organizations need to be able to proactively ensure appropriate identity and access rights are maintained. And, if your organization is governed by regulatory requirements (e.g. Sarbanes-Oxley, HIPAA, GLBA, 21 CFR Part 11, FISMA), it's not just about cleaning up after a security incident. It's about reputation damage control, financial loss, and potential legal action.

With a constant stream of authorized and unauthorized system changes and unprotected access controls, managing IT security in a diverse system environment (servers, workstations, and laptops) is impossible without an automated, proactive approach. Enter Ecora.

Ecora's solutions provide hundreds of audit-ready report templates and a policy-based dashboard for effective Security Reporting.

The Ecora Solution for Security Reporting

The Journal Sentinel's enterprise environment is heterogeneous with Windows and UNIX servers that run the newspaper's critical services, including circulation, advertising, email, web, and ecommerce. Keeping these systems secure was a must before for CIO Jim Herzfeld and his staff. “When things change, problems can occur and vulnerabilities are exposed,” stated Herzfeld. “It's inevitable that IT changes will happen and that's where Auditor Professional really shines. We're able to get day by day snapshot reports to prove changes happened as planned, and if not, we know exactly where the problem is so it doesn't effect security or uptime.” Because the newspaper business relies on the constant flow of outside information, Herzfeld describes it as “a collection ground for viruses.” The Journal Sentinel is using Auditor Professional to efficiently manage system and Active Directory security settings. “We've greatly improved our security with Auditor Professional by knowing who has access rights and alerting us to file size, checksum, and other system anomalies,” said Herzfeld. “With Auditor Professional, we have an easier time sleeping at night.”

More Information

To find out how Ecora can help with your regulatory compliance and IT best practice initiatives by automating detailed configuration and change reporting within your IT infrastructure – call 877.92.ECORA, or 603.436.1616, or e-mail