|
|
|
|
 |
Akibia’s Managed Service, AssuredCompliance, reduces the cost of compliance by addressing multiple regulations via a single integrated framework. Viewing compliance through this framework enables companies to leverage the same processes and data for multiple regulations. This allows companies greater insight into the overlap between various compliance regulations and assists the IT organization in prioritizing issues based on risk mitigation. AssuredCompliance includes identification and documentation of gaps in current processes, mapping of controls across multiple mandates, compliance reporting and documentation, quarterly compliance evaluations, compliance training for IT staff, and access to an online compliance portal. Akibia, a Zensar company, provides innovative Infrastructure Management solutions that enable leading companies worldwide to optimize, secure, manage and support their mission-critical infrastructure.
|
|
|
|
|
TruComply, ANX’s enterprise governance, risk, and compliance (GRC) solution, is designed to help organizations manage compliance and risk in their internal environment and in their extended vendor supply chain. With TruComply, clients are able to provide clear and timely communication of risk, and translate the data into actionable recommendations and reporting. Furthermore, clients have the ability to rapidly adjust to new or updated regulatory requirements and eliminate redundant compliance activities and tasks.
|
|
|
 |
Archer has licensed the UCF content to provide customers with a consistent set of controls mapped to several regulatory standards and best practices. In addition, all UCF controls have been mapped to the Archer Control Standards which will simplify managing your compliance to the control objectives across all regulations.
|
|
 |
BWise delivers proven solutions to help organizations become "in control" by increasing corporate accountability; strengthening financial, strategic and operational efficiencies; and maximizing performance and ROI. Partnering with Network Frontiers enables BWise customers to further mitigate compliance costs, reduce the administrative burden, and leverage the value of compliance-related technologies and services. UCF quarterly updates help to ensure continuous compliance. BWise's integration of the UCF is in process.
|
|
 |
ControlScan makes it easier to meet PCI requirements and protect your customers' important information. ControlScan's PCI 1-2-3 compliance solution, available online via a merchant portal called myControlScan.com, provides you with the leading tools and support necessary to analyze, remediate and validate PCI compliance at an affordable rate.
|
|
 |
LockPath, Inc., the creator of the Keylight™ product family, provides a comprehensive, innovative GRC (Governance, Risk, and Compliance) software platform.
The Keylight CM and Keylight GRC application suites, both fully integrated with the Unified Compliance Framework (UCF), enable small and mid-sized enterprises to cost-effectively transition from traditional methods of compliance management to an easy-to-use and scalable Software-as-a-Serivce (SaaS) application. Keylight GRC provides large-scale enterprises and government agencies a robust application suite capable of handling the most advanced Governance, Risk, and Compliance programs. Designed to solve the scalability issues that plague the GRC market, Keylight GRC delivers unprecedented data integration and correlation capabilities.
|
|
 |
Lumension® Compliance and IT Risk Management, comprised of Lumension Risk Manager and Lumension Enterprise Reporting, automates the compliance and IT risk management workflow to reduce the cost of supporting numerous compliance requirements. The Lumension solution ensures that IT risks are prioritized by their potential impact on the business. Key capabilities include risk profiling of IT assets and business interests, use of the Unified Compliance Framework (UCF), which harmonizes IT controls across numerous compliance mandates, automated assessment of technical, physical and procedural controls, and continuous monitoring and reporting to satisfy a diverse IT risk and compliance audience.
|
|
 |
MetricStream offers an advanced and comprehensive IT GRC software solution suite for streamlining these processes and effectively managing IT risk and meeting IT regulatory requirements. MetricStream enables companies to implement a formal framework to ensure rigor around how to measure, mitigate, and monitors IT risks. It eases complying with many regulations governing data retention, privacy, confidential information, financial accountability and recovery from disasters reduce the cost of compliance.
|
|
 |
Microsoft System Center Service Manager is an integrated platform for automating and adapting your organization's IT service management best practices, such as those found in Microsoft Operations Framework (MOF) and Information Technology Infrastructure Library (ITIL). It provides built-in processes for incident and problem resolution, change control, and asset lifecycle management. Through its configuration management database (CMDB) and process integration, Service Manager automatically connects knowledge and information from System Center Operations Manager, System Center Configuration Manager and Active Directory.
|
|
 |
The UCF translated into Japanese!
|
|
 |
NetIQ's Security and Compliance Management solution reduces enterprise risk, decreases compliance costs, and increases the security of critical information assets. Intelligent and integrated management of user activity and control of system configuration directly addresses the most significant security problems facing the enterprise. Automating the compliance and security processes reduces costs and helps you more easily protect critical servers, applications and customer data through scalable and streamlined security and compliance programs.
|
|
 |
NitroSecurity is the leader in high-performance, content-aware SIEM solutions. Our integrated NitroView solutions provide real time visibility into events, flows and logs and monitor networks, databases and application data. Utilizing the industry’s fastest analytical tools, NitroSecurity enables compliance and detects and identifies cyber threats in minutes instead of hours.
|
|
 |
OpenPages ITG aligns IT policy, risk and operations management with corporate business initiatives, strategy and operational standards. Leveraging a core, shared-services and open architecture, OpenPages ITG makes IT risk and compliance management achievable, enabling organizations to sustain compliance across multiple IT best practice frameworks and regulations such as CoBIT, ISO 17799 (renumbered ISO/IEC 27002), and ISO/IEC 27001, while managing internal IT control and risk according to the business processes they support. OpenPages ITG unites multiple silos of IT risk and compliance to deliver improved visibility, better decision support, performance and stronger valuation.
|
|
 |
Prevari provides predictive analytics, metrics and instrumentation to proactively manage risks to information. Prevari has licensed UCF content and mapped the UCF controls to the specific mathematical impact on Confidentiality, Integrity and Availability using our patented Risk Calculation Engine.
Prevari's computational capability factors both compliance data and technical data from GRC suites, technology scanners, sensors and SIM/SEM to provide the most holistic understanding of risks to information available.
Prevari doesn't make GRC tools, Prevari makes GRC tools better.
|
|
 |
Symantec Control Compliance Suite (CCS) is designed to address IT risk and compliance challenges by delivering greater visibility and control across your infrastructure, data and people. Our holistic, fully-automated solution allows you to effectively manage security risks while reducing the cost and complexity of compliance. You can take advantage of built-in regulatory and technical content automatically mapped to policies and updated as regulations change; automatic technical and procedural controls assessments; a centralized database which combines CCS and third party data making it available for multi-level reports and dashboards; the ability to do risk-based remediation through built-in risk scoring and integration with remediation ticketing systems.
|
|
 |
QualysGuard® Policy Compliance allows an organization to reduce the risk of internal and external threats, while at the same time providing proof of compliance demanded by auditors across multiple compliance initiatives. QualysGuard® Policy Compliance extends the global scanning capabilities of QualysGuard® Vulnerability Management to collect OS Configuration and Application Access controls from hosts and other assets within the enterprise, and maps this information to user-defined policies in order to accurately document compliance with security regulations and business mandates.
|
|
 |
ARC Logics™ for Financial Services combines the proven technology of ARC Logics, a Wolters Kluwer business, with industry content, regulatory content and the expertise of Wolters Kluwer Financial Services, enabling organizations to efficiently manage compliance risk, financial risk, operational risk, and audit. ARC Logics is a modular integration of five key risk management components: Policies and Procedures, Risks and Controls, Financial Analytics, Program Management and Audit. With ARC Logics, organizations are able to fulfill immediate enterprise risk management objectives in a targeted, cost-effective manner while concurrently building a holistic, enterprise wide program.
|
|
