At Citrix, we know that improving security and compliance are two of the main challenges for businesses today, especially in highly regulated industries. Well, recently we released a technology in Citrix XenApp (the new name for Citrix Presentation Server) Platinum Edition that helps businesses monitor, record and play back ICA sessions as part of their ongoing risk management and regulatory compliance measures. The technology is called SmartAuditor (check out the demo to see how it works).
If you have a TiVo or a digital video recorder at home and love it (like I do), then you’ll love SmartAuditor because its functionality is very similar in concept. The same way TiVo allows you to record all the shows that you want to watch, whenever you want, and play back those shows, SmartAuditor allows you to record and play back XenApp ICA sessions.
The great value of this technology is that it enables IT to monitor and examine user activity of applications demonstrating internal control, and ensuring regulatory compliance and successful security audits. Its monitoring capabilities can aid in monitoring user activity involving sensitive data, such as in financial operations and healthcare patient information systems. Additionally, there are many other use cases where SmartAuditor can help, such as in litigation support, training and in technical support to help speed up problem identification and time-to-resolution.
How does it work?
SmartAuditor uses flexible policies to automatically trigger recordings of XenApp sessions and it works in 3 easy steps: Configure, Capture and Audit.
First, the administrator configures the tool and selects which users, applications and servers they want to monitor. Then, they capture the user activity by recording it to a video file that is digitally signed and stored in a central location. Finally, they can review the user activity by playing back the recorded ICA session in the SmartAuditor player.
Use Case Example
So now that you understand how SmartAuditor extends IT’s ability to monitor and examine user activity of applications, let me give you an example. Let’s say that the IT manager at a high-tech company, needs to monitor every employee planning to leave the company. Well, he can use SmartAuditor to record sessions for all employees who gave their two-week notice to leave the company. This type of user could potentially present a risk of data or intellectual property theft, but with SmartAuditor the IT manager can monitor all user sessions to capture suspicious activity. These recordings could be used as visual evidence if needed to prove criminal intent, but furthermore, with SmartAuditor he can notify the users that they are being recorded which, in itself, can help prevent theft or malicious activity in the first place.
If you are already using SmartAuditor, please let me know your thoughts. Also, I encourage you to share your use cases and post any comments and/or suggestions you may have.
What other aspect of SmartAuditor would you like to see covered in this blog?