| | | RssFeeds
 
Get NetworkComputing Connect Search   Search Search
 
NWC Print
July 2008
Beyond Headlines
Buzzcut
Editorial
Cover Story
On the Record
On Location
Show Case
Bulls Eye
Lateral View
Inshort
In-Depth : Wireless
Analytics Brief
Down to Business
Techmall
Book Review
In Passing
Last Mile
Archieve
 

RSA Releases Findings on Standards-based Approach to Simplify Compliance

NWC News Network, May 07 2008, 1415 hrs

RSA along with Corporate Integrity, has announced findings on standards-based security frameworks which can be aligned with compliance management. The company has added functionality of reports complying with the ISO 27002 standard in it’s enVision solution.

Commissioned in March 2008, to Michael Rasmussen, an industry analyst and President of Corporate Integrity, the research paper is based on what it means to develop a “sustainable and cost-effective IT compliance program.”  The key findings of this project are, that the typical approach to compliance - i.e. responding on a regulation-by-regulation basis without an integrated IT compliance management program – escalates costs, reduces overall visibility of the control environment, wastes resources, and leads to unnecessary complexity, inflexibility,  vulnerability and exposure.

As organizations globally struggle both, to comply with a plethora of compliance requirements, and improve enterprise-wide security, a framework-based approach which is founded upon best practices and controls, helps customers to build a proactive security program that may effectively eliminate organizational compliance silos.  By driving compliance holistically, rather than on a requirement-by-requirement basis, companies may reduce costs by avoiding redundant technology controls and easing the process of managing compliance.  In addition, leveraging international standards such ISO 27002 as the foundation of an IT security and compliance the program helps organizations align efforts to comply with key portions of many global regulations, including the Payment Card Industry (PCI) Data Security Standard (DSS), HIPPA, Sarbanes-Oxley, the European Union’s Data Protection requirements and regional data privacy laws.

The findings detail the benefits organizations may gain such as reduced costs and improved security. The paper also details the ability of comprehensive security frameworks to help companies easily comply with a variety of security requirements handed down by regulatory bodies. The enVision platform is designed to offer such a comprehensive suite of out-of-the box reports aligned directly with the ISO 27002 standard. This is expected to help enable organizations effectively monitor their security and compliance program.  Reports within the platform focus on areas such as computer account logon activity, computer account status, control of collected evidence, control of human resources data, malicious software activity, password changes and expirations and source code access.
Print this Page   E-mail this Page
RATE THIS ARTICLE
 Worse   Better 
Comment:*
First Name:*
Last Name:*
Company:
City:*
E-mail:*
Verification Code:*

Type the characters you see in the picture above.
 
  Reset

Comments >>
1
No Comments to display

Disclaimer >>
Messages posted on this Web site under the `Comments' area are solely the opinions of those who have posted them and do not necessarily reflect the opinions of UBM India Pvt. Ltd.(CMP) or its site www.networkcomputing.in . Gossip, mud slinging and malicious attacks on individuals and organizations are strictly prohibited. UBM India Pvt.Ltd .(CMP) and www.networkcomputing.in can not be held responsible for errors or omissions in content, nor for the authenticity of the user/company name or email addresses associated with posted messages. UBM India Pvt.Ltd. (CMP) reserves the right to edit or remove messages containing inappropriate language or any other material that could be construed as libelous, potentially libelous, or otherwise offensive or inappropriate. UBM India Pvt.Ltd.(CMP) and www.networkcomputing.in do not endorse the products and services or any other offerings mentioned in these messages.
 
 CIO of the Week >>

“The management has identified technology as the change agent that will drive the company ahead”

Nitin Arora, CIO, Writer Corporation

 

More: CIO OF THE WEEK >>


 FEATURED STORIES >>

Americans not Confident About the Safety of Their Personal Data

Only an average of eight percent of Americans say they are very confident in the ability of US retailers, government and banks to protect their personal information

 

BT to Launch £1.5 Billion Programme

BT announced plans to roll out fibre-based, super-fast broadband to as many as 10 million homes by 2012

 

Icahn Would Sell Yahoo's Search Business to Microsoft for $1 Billion

Under Icahn's plan, Microsoft also would pay billions of dollars to become the exclusive search provider on all Yahoo sites for a term of 5 years

CAST YOUR VOTE>>
"Do you think growing consolidation among IT vendors is good for enterprise users?"



View Polls Archive
ADVERTISEMENTS >>
 
News | Server & Storage | Network Infrastructure | Information Security | Enterprise Applications | Connectivity & Convergence | Whitepaper | Management
International Partners: Germany
Media Kits | Reprints | Privacy Statement | California Privacy Rights | Copyright © 2007 CMP Media LLC | Terms of Service
Content Management System By AdwebTech | Search Engine Optimization By AdwebTech & eBrandz | Web Hosting By AdwebTech & Hostway
Powered By: ssCMS 2.2.0.0