Proactive Risk Analysis

Enforcing Risk Assessment in the Change Request Process

One of the most important capabilities of Security Change Automation is proactive risk analysis – the ability to enforce a process where risk and compliance are evaluated before any change is made, and are verified again after a change is completed. To make this possible, advanced security policy analysis technology must be an integral part of the workflow system.

Risk throughout the Change Request Lifecycle

SecureChange checks a baseline of corporate and regulatory policy against each change request and change design, at the critical stages of the change request lifecycle:

• Request approval: SecureChange checks the request for compliance with corporate and regulatory policy. The designated approver can view this analysis in order to make an informed decision.
• Change Design: The Policy Change Advisor performs policy and risk analysis and recommends a change design that does not introduce vulnerabilities.
• Verification:After changes are made, SecureChange verifies that the implemented change corresponds to the original user access request, to avoid risk of overly permissive rules.
• Audit: SecureTrack checks that the change is compliant with corporate standards, sending out compliance alerts in case of violations.