The Silicon Review
“With its innovative solutions, Cimcor proactively secures your critical infrastructure and ensures IT compliance with regulatory requirements.”
With economic gain as the driver, today’s threats are increasingly complex, efficient and criminal. Advances in malware, bot-nets, phishing and countless other attack vectors make it very difficult to know what’s infiltrating your critical IT systems. Regardless of how big or small, unexpected changes from either external or internal sources can be dangerous, embarrassing and costly. Founded in 1997, Cimcor is an industry leader in developing innovative security, integrity and compliance software solutions. The firm is on the front lines of global corporate, government and military initiatives to protect critical IT infrastructure and has consistently brought IT integrity innovations to market.
Cimcor’s flagship software product, CimTrak, helps organizations to monitor and protect a wide range of physical, network and virtual IT assets in real-time. Built around leading-edge file integrity monitoring capabilities, CimTrak gives organizations deep situational awareness including: who is making changes, what is being changed, when changes are occurring, and how changes are being made. This, coupled with the ability to take instant action upon detection of change, gives organizations assurance that their IT assets are always in a secure and compliant state.
Cimcor is headquartered in Merrillville, Indiana with business operations in the US, Asia-Pacific marketplace, Indonesia, Australia, Poland, Turkey, and Taiwan.
The Building Blocks of Secure and Compliant IT Systems
CimTrak is a comprehensive security, integrity and compliance application that is easy to deploy and scales to the largest of global networks. CimTrak’s automated detection process, flexible response options, and auditing capabilities make it a powerful compliance, information assurance and security tool. As an alternative to Tripwire® and other file integrity monitoring software, CimTrak provides an unparalleled feature set which is simple to use, yet comes a a budget friendly price.
Built around leading edge, proprietary, file integrity monitoring technology, CimTrak protects any type of file, whether it is a document, executable, script, application program file, or operating system file. It also monitors for changes to critical system and device configurations, as well as critical database components. CimTrak instantly determines when files and configurations are modified and, if desired, take instant, proactive action to correct the change and mitigate risk. With advanced ticketing capabilities, CimTrak differentiates good change from bad, allowing the focus to be placed on changes that truly need attention.
How CimTrak Works
CimTrak consists of four integrated software components: The CimTrak Master Repository, CimTrak Management Console, CimTrak Agent and CimTrak modules. Each component operates as an autonomous unit, yet work in tandem to provide superior protection of your critical IT assets.
CimTrak Master Repository
The CimTrak Master Repository is the principal component of the CimTrak system. It is where digital signatures are stored, authoritative and authenticated copies of protected objects are maintained, and communication between the other CimTrak components is performed.
CimTrak Management Console
The CimTrak Management Console or “Client” is your administrative window into the inner workings of CimTrak and your IT environment. The Management Console is used to configure monitoring policies and alerts, analyze events, and produce reports.
The CimTrak Agent is the watchdog of your systems. Its sole objective is to capture and address any event that occurs to any object that is being protected. Each component being protected has an Agent installed, which in turn communicates through an authenticated and encrypted layer, with the CimTrak Master Repository. The CimTrak agent can monitor a wide variety of compenents in your IT infrastructure including servers, workstations/desktops, network devices, and even SCADA systems.
Various “plug-in” modules exist for the CimTrak Agent which extend its capability and allows it to perform specialized monitoring. Examples are monitoring database schemas, Active Directory/LDAP settings, and VMware ESXi host configuration settings for changes that can compromise IT security, and even lead to a data breach.
IT Integrity, Security, and Compliance
Each CimTrak product can operate as an autonomous unit, yet all products are centrally configured and managed from a single Management Console/Security Dashboard.
CimTrak for Servers – protects against unauthorized change to vital applications and servers (physical, virtual or cloud based), including operating system settings, system files, directories, data files, file attributes and Windows® Registry settings. CimTrak utilizes a truly real-time, proprietary methodology for detecting changes to servers and was the first product to bring real-time change detection to the file integrity monitoring market. It is important to note that CimTrak does not work in a fashion that approximate real-time by continuously “polling” the server or opening multiple listening ports. It is truly “real-time detection.” This highly specialized, proprietary technology ensures that no other change detection/file integrity monitoring solution can make this claim!
CimTrak for Network Devices – protects against unauthorized or accidental changes to network infrastructure to keep IT systems secure, avoid costly downtime and ensure maximum availability of vital network resources. With support for many brands including Cisco, Extreme, F5, HP and Juniper, your entire network infrastructure can be secured! Eliminating unexpected outages requires knowledge of what’s actually changing and mitigating those events in real-time. CimTrak provides complete visibility into an entire network for monitoring, troubleshooting and proactive management. This includes detecting and blocking attempts at unauthorized access, providing configurable alerts to network administrators, recording actionable reports about intrusions and taking quick, corrective action to return your network back to its normal state.
CimTrak for Databases – reports on all changes to critical database components and instantly alerts clients to these changes. By quickly detecting changes, they can take swift investigative action to determine if a change was malicious or even accidental.
Most popular database platforms are supported including:
• Microsoft SQL Server
• IBM DB2
As with all CimTrak components, CimTrak for Databases is centrally configured and managed via the CimTrak Management Console. This means that, just like other CimTrak components, it is simple to configure and use in addition to being very cost effective.
CimTrak for Active Directory/LDAP – monitors directory services for deviations to objects, attributes, and schema. Large environments can suffer from alterations that fly under the radar. Unexpected changes may be limited to a single entity, such as an addition of a new account, or can have broader impact, such as a denial of service, due to the inherent hierarchical design. CimTrak provides the awareness needed to quickly detect and alert when such deviations occur.
CimTrak for Point of Sale (POS) Systems – Securing point of sale (POS) systems is an important element of ensuring that your customer’s valuable payment card information (PCI) is not compromised. CimTrak covers your point of sale (POS) systems as part of a comprehensive strategy to protect your PCI environment.
CimTrak ensures that you have complete visibility into changes to these critical devices. Changes, whether malicious or accidental, can lead to a breach of payment card information (PCI) and non-compliance with PCI-DSS. Trust CimTrak to maintain the integrity and security of your point of sale (POS) systems. It covers a wide range of point of sale (POS) systems including those running Windows XP (including XP embedded), Windows Embedded for Point of Service (WEPOS), and POSReady.
CimTrak for VMware ESX/ESXi Configuration Monitoring – Active monitoring of VMware ESX hypervisor configurations is an important aspect in the process of IT security as well as overall best-practices in an administrative environment. Many VMware ESX configuration monitoring products monitor the VMware hypervisor using VMware’s application programming interface. Unfortunately, tools utilizing this method are limited to capturing only information exposed by the VMware hypervisor.
CimTrak takes VMware ESX/ESXi monitoring to the next step by monitoring the configurations of the VMware Hypervisor directly at the source. CimTrak interfaces directly with VMware to securely capture actual configuration data files from the Hypervisor host. Capturing the actual configuration data files allows complete analysis of the VMware Hypervisor and the host operating system running the Hypervisor. Additionally, CimTrak’s method of detection provides administrators the capability to manually roll-back configurations using the authoritative copy of configurations stored within CimTrak’s Master Repository.
CimTrak for File Integrity Monitoring – protects critical files from changes, whether malicious or accidental, that can take down your critical IT infrastructure, threaten critical data, or cause non-compliance with with regulations such as PCI. Change is inevitable in the IT environment. CimTrak delivers integrity monitoring, proactive incident response, change control, and auditing capabilities in one easy to use and cost effective file integrity monitoring tool.
Cimcor’s customers range from Fortune 500 through small businesses, as well as military and government agencies looking to address IT security as well as compliance with regulations such as PCI-DSS HIPAA, FISMA, and NERC-CIP. Some of its notable customers are Acme Steel, Best Foods, Coca Cola, Daimler-Chrysler, etc.
Knowing the Master
Robert Johnson, III, President and CEO – Robert is a successful entrepreneur who has extensive business knowledge and deep understanding about various industries, especially in Internet Security. Prior to Cimcor, he worked as the Manager of Business Systems at Kvaerner. Robert has a Bachelors degree in Computer Information Systems and a Masters degree in Management from Purdue University Calumet.
“CimTrak quickly, easily and cost-effectively preserves your system’s state and can instantly take action when changes occur.”