Regional council eliminates security blind spots and reduces the likelihood of a breach
Challenge
- Replace manual auditing with automated change tracking
The council needed to move away from manual IT auditing processes and implement automated tracking of changes across the IT infrastructure. This would help the IT team quickly identify and respond to critical or unwanted events that could pose security threats. - Reduce risk from limited IT resources
With a small IT team, the council struggled to monitor all critical changes, such as Active Directory modifications. They needed automated auditing to minimize the risk of overlooking important security events and strengthen overall protection.
Why to go through a bunch of commands if there is Netwrix Auditor? It consolidates all information on activity and changes in your network in one place. It’s great how easily you can retrieve information to investigate an incident or reply to an auditor’s request. The service has always been fantastic, too: Whenever I need assistance, tech support contacts me the very same day and provides timely updates on my queries.
Bevan Hussey, Systems Officer, Queanbeyan-Palerang Regional Council
Netwrix solution
Bevan Hussey, Systems Officer at Queanbeyan-Palerang Regional Council, had been using Netwrix products at his previous job, so he recommended Netwrix Auditor once he joined the Council. He cited the product’s ease of use as the primary reason for making that recommendation. With the solution, his team has been able to gain the following benefits:
- Full control over changes. Bevan doesn’t have to juggle multiple auditing tools, because Netwrix Auditor provides access to the complete audit trail in a centralized platform. He checks activity summaries on a daily basis to see what happened across the organization’s most critical systems: Active Directory, Exchange, VMware and Windows Server. Delivered in a unified and consistent way, this information enables him to quickly detect and investigate anything out of ordinary, such changes to Group Policy, modifications of virtual machines or elevated account permissions.
- Prompt detection of malicious activity. Bevan especially values that Netwrix Auditor helps his team detect unusual activity that can indicate a malicious insider or compromised account and thwart it before any damage is done. For example, the software alerts him to excessive numbers of failed logon attempts, a user being added to the powerful Domain Admins group, and other activity that could indicate a threat.
- Improved IT staff accountability and education. Bevan also uses Netwrix Auditor to ensure that the actions of IT staff do not violate security policies or disrupt business workflows. For instance, if an admin accidentally adds a user to a privileged group or improperly revokes access rights, he can detect it and resolve the issue right away, as well as provide additional training to that employee.
With Netwrix, I can instantly go to a particular day and run the report and provide the information to my boss or HR within half an hour. Without the software, I would haven’t been able to find those answers.
Bevan Hussey, Systems Officer, Queanbeyan-Palerang Regional Council
Key benefits
- Optimized change and configuration auditing
- Accelerated detection and investigation of incidents
- Improved IT staff accountability and education
Queanbeyan-Palerang Regional Council is one of the fastest growing councils in the Southern Tablelands region of New South Wales, Australia. The Council is a progressive organization that is committed to continually improving its processes and services to provide increased value for the community.
Share on
