My use case for Tripwire Enterprise is configuration monitoring and regulatory purposes for the NERC CIP standards. That's about fifty percent GRC and fifty percent security around the NERC CIP standards.

I primarily use the solution for many use cases. 

Our primary use case for the Tripwire Enterprise solution is for vulnerability assessment.

We use Tripwire Enterprise for monitoring configurations on your devices.

We use the solution for compliance purposes.

The solution is used for hardening and tracking changes. It can be used for file integrity monitoring and secure configuration management. Tripwire is a traditional SCM solution.

The primary use case of this solution is for:

• Check File Integrity
• Check Databases Configuration Integrity, Network devices
  
• Monitor changes manually or in real time
• Validate legitimate changes
• Reverse unauthorized changes
• Test node compliance against standards( ISO 27001, PCI DSS, SWIFT...)
• Automatic and manual remediation
• Generate reports manually or automatically
• Send notification emails
• Send logs via Syslog protocol

Banks have different compliance requirements, such as CIFs or NEFT, and they want to monitor everything at the OS, application, server, and virtualization level. They want to detect who has made the change, when did they make the change, and what is the root cause of those changes. We can monitor all this along with root causes with the Tripwire Premium solution. We are monitoring different files, folders, registries, applications, and servers. We are also implementing GuardianOS.