Cognoscenti © – Continuous Security Monitoring Software

Cognoscenti CCG’s Cognoscenti is unique in the market, providing a true enterprise-wide, heterogeneous environment with continuous monitoring, diagnostic, and mitigation software to protect your organization’s enterprise assets, infrastructure, and data.

Cognoscenti software tracks and monitors configuration and security changes throughout the enterprise and provides Continuous Diagnostics and Mitigation (CDM) in accordance with Department of Homeland Security (DHS) guidelines. CCG’s software also supports continuous evaluation across a broad spectrum of assets (hardware, software, and networks) and provides situational awareness, risk scoring, and local and enterprise-level dashboards.

CCG’s software is compliant with DHS’s Continuous Asset Evaluation, Situational Awareness, and Risk Scoring (CAESARS) reference architecture, collaborating with the U.S. Departments of State, Justice, and Treasury (DHS-MP100146). The software supports unlimited Current-System-State (CSS) continuous monitoring assessments against the enterprise baseline, consisting of the following critical components: sensors, database, reports/dashboards, risk scoring, and mitigation strategies. It inspects mixed environment (heterogeneous) hardware and software on:

  • Cisco
  • Unix
  • Windows
  • Managed Power
  • VMware
  • VMware ESX
  • MacOS
  • KVM
  • Linux
  • Disk storage systems

Cognoscenti has the ability to continuously monitor targets and to ingest and correlate collected data from other monitoring software. It performs a comparative analysis, that is, baseline vs. current configurations and generates reports identifying items that have diverged from the established baseline. This can be used to also show Delta Time – how things evolve over time.

CCG’s software can ingest data (validation data) that represents expected values (software versions, patch levels, authorized software sets, attack anatomies and signatures, and asset discovery, etc.) and can create reports identifying discrepancies. The software-supported CSS provides the ability to provide resilient security and is responsive to breaches in real time.

Cognoscenti is designed to work at the local and enterprise levels by installing individual smart autonomous “remote” auditors/sensors for the entire enterprise, even when mixed operating systems and appliances are present. There is a “central” management dashboard designed to consolidate sites and provide a single glass-panel review of your enterprise. Monitoring can be performed even when networks are down or sites are disconnected – data can be delivered to the central system by media and digested by the central system to update its current knowledge of the remote site. By default, for any connected site, the network will be used to analyze data. The transmitted dataset is optimized and encrypted to be non-intrusive to operations and resilient to attacks – it has been engineered not to fail. The system supports drill-down methodologies to dig deep into problems. It is easy to use and requires minimal training.