| Symantec to Simplify Compliance Management with New Control Compliance Suite |
|
| Tuesday, 15 May 2007 | |
  
Featured Whitepaper
5 Best Practices for Smartphone Support
Due to the multiple mandates, regulations and standards that impact multiple business units at any given company, many companies increase compliance costs by implementing redundant controls to address each one though many include the same requirements. Symantec Control Compliance Suite provides key elements of the IT governance, risk and compliance management process by helping to ensure coverage of external mandates by automating policy documentation and dissemination, acceptance tracking and exception management. It also demonstrates compliance to internal and external policies by automating the assessment of technical and procedural controls and evaluating this against risk criteria.
Compliance evidence can be gathered on configurations, permissions, patches, vulnerabilities and the solution controls self assessment of procedural activities without relying on agents. Finally, Symantec Control Compliance Suite helps fix deviations to standards, enabling immediate corrective actions or triggers to third-party response workflow systems. Symantec Control Compliance Suite provides these capabilities by leveraging four new modules: * Policy Module – enhanced module enables customers to define and disseminate policies, show coverage of regulatory requirements and demonstrate compliance to policies in one solution.* Standards Module – enhanced module automates the detection and remediation of deviations from technical standards, and provides pre-packaged technical standards that define best practices for securing workstations, servers and databases. * Entitlement Module – enhanced module automates the detection and remediation of deviations from technical standards, and provides pre-packaged technical standards that define best practices for securing workstations, servers and databases. * Entitlement Module – new module gathers permissions for data access across the entire company and translates those permissions into a consistent, easy-to-understand format. It associates management classification to the data, and electronically routes the information to business owners for access approval. Entitlements approvals are tracked and made available for audit reports. * Response Assessment Module – new module automates the assessment of non-programmatic controls by providing out-of-the-box content for popular standards and frameworks. Customers are able to manage the manual assessment process from creating and distributing questionnaires to analysing response data. These manual attestations complement the technical assessments also provided in the product."Organisations are not just struggling with maintaining strong IT compliance, but also understanding what policies and standards they should implement to achieve it," said Arshad Matin, vice president, Compliance and Security Management, Symantec. "A typical organisation is a complex, heterogeneous environment, with a variety of platforms and a diverse set of control objectives. Understanding requirements and how to achieve strong IT compliance requires comprehensive intelligence of regulations, frameworks and the relevant best practices. Symantec is helping customers lower their risk of non-compliance and improve internal controls through a combination of automation, process improvement and training." Additionally, Symantec Consulting Services will provide advisory and operations services support to complement the features of Control Compliance Suite. Symantec Consulting Services can help an organisation interpret, evaluate, and validate its compliance with regulatory industry standards and its own internal best practices and procedures. Licensing and Availability Symantec Control Compliance Suite 8.5 is scheduled to be available in late May through Symantec’s worldwide network of value-added resellers, distributors and systems integrators. The solution's Response Assessment Module is scheduled to be available in June. Organisations seeking a reseller or distributor should contact Symantec at http://enterprisesecurity.symantec.com . For more information on Symantec’s IT Policy Compliance offerings, visit http://www.symantec.com/enterprise/products/category.jsp?pcid=1004 .About Symantec Symantec is a global leader in infrastructure software, enabling businesses and consumers to have confidence in a connected world. The company helps customers protect their infrastructure, information, and interactions by delivering software and services that address risks to security, availability, compliance, and performance. Headquartered in Cupertino, Calif., Symantec has operations in 40 countries. More information is available at www.symantec.com .### NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, please visit the Symantec News Room at http://www.symantec.com/news . All prices noted are in U.S. dollars and are valid only in the United States.Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners. Media Contact: Debbie Sassine Symantec +61 2 8879 1110 This e-mail address is being protected from spam bots, you need JavaScript enabled to view it
Angela Coombes Max Australia +61 2 9954 3492 This e-mail address is being protected from spam bots, you need JavaScript enabled to view it _______________________________ [1] "Improving IT Compliance: 2006 IT Compliance Benchmark Report," IT Policy Compliance Group, June 2006 |
Tags
| < Next story in category | Previous story in the category > |
|---|
