Cognoscenti © – Continuous Security Monitoring Software

Unique in the market – the only true enterprise-wide, heterogeneous environment, continuous monitoring and continuous diagnostic and mitigation software to protect your enterprise assets, infrastructures and data.

This software tracks and monitors configuration and security changes through out the enterprise and provides continuous diagnostic and mitigation (CDM) in accordance with Department of Homeland Security (DHS) guidelines. The software also supports continuous asset evaluation across a very broad spectrum of assets (hardware, software and networks) and provides situation awareness, risk scoring and local and enterprise-level dashboards. It is compliant with the DHS reference architecture CAESARS built in collaboration with the Department of State, Justice and Treasury (DHS-MP100146). The software supports unlimited Current-System-State (CSS) continuous monitoring assessments against the enterprise baseline and consists of the following critical components: sensors, database, reports/dashboards and risk scoring and mitigation strategies. It inspects mixed environment (heterogeneous) hardware and software on:

  • Cisco
  • Unix
  • Windows
  • Managed Power
  • VMware
  • VMware ESX
  • MacOS
  • KVM
  • Linux
  • Disk storage systems

Cognoscenti has the ability to continuously monitor targets and to ingest and correlate collected data from other monitoring software. It performs a comparative analysis, that is, baseline vs. current configurations (CSS) and generates reports identifying items that have diverged from the established baseline. This can be used to also show Delta Time, how things evolve over time. The software can ingest data (validation data) that represents expected values (software versions, patch levels, authorized software sets, attack anatomies and signatures, asset discovery, etc.) and can create reports identifying discrepancies. Current-System-State provides the ability to have resilient security and be responsive to breaches in near real-time.

The software is designed to work at the local and enterprise level by installing individual smart autonomous “remote” auditors/sensors for the entire enterprise, even when mixed operating systems and appliances are present. There is a “central” management dashboard that is designed to consolidate sites and provide a single glass-panel review of your enterprise. Monitoring can be performed even when networks are down or sites are disconnected – data can be delivered to the central system by media and digested by the central system to update it’s current knowledge of the remote site. By default, for any connected site, the network will be used to analyze the data. The transmitted data set has been optimized and encrypted to be non-intrusive to operations and resilient to attacks – it has been engineered not to fail. The system supports drill-down methodologies to dig deep into problems. It is easy to use and training is minimal.

It appears your Web browser is not configured to display PDF files.
No worries, just click here to download the PDF file.