Archer has licensed the UCF content to provide customers with a consistent set of controls mapped to several regulatory standards and best practices. In addition, all UCF controls have been mapped to the Archer Control Standards which will simplify managing your compliance to the control objectives across all regulations.

BWise delivers proven solutions to help organizations become "in control" by increasing corporate accountability; strengthening financial, strategic and operational efficiencies; and maximizing performance and ROI. Partnering with Network Frontiers enables BWise customers to further mitigate compliance costs, reduce the administrative burden, and leverage the value of compliance-related technologies and services. UCF quarterly updates help to ensure continuous compliance. BWise's integration of the UCF is in process.

Greatly simplify the problem of controlling risk as well as reducing the cost and complexity of your compliance efforts using CA GRC Manager, a centralized, unified approach to managing all IT risks and controls.

ControlScan makes it easier to meet PCI requirements and protect your customers' important information. ControlScan's PCI 1-2-3 compliance solution, available online via a merchant portal called myControlScan.com, provides you with the leading tools and support necessary to analyze, remediate and validate PCI compliance at an affordable rate.

Lumension® Compliance and IT Risk Management, comprised of Lumension® Risk Manager and Lumension® Enterprise Reporting, automates the compliance and IT risk management workflow to reduce the cost of supporting numerous compliance requirements. The Lumension solution ensures that IT risks are prioritized by their potential impact on the business. Key capabilities include risk profiling of IT assets and business interests, use of the Unified Compliance Framework (UCF), which harmonizes IT controls across numerous compliance mandates, automated assessment of technical, physical and procedural controls, and continuous monitoring and reporting to satisfy a diverse IT risk and compliance audience.

Synthesizing data from your disparate security systems for a holistic view of security risks and compliance issues is time- and labor-intensive. McAfee Risk and Compliance Manager (formerly McAfee Preventsys®) automates data gathering from your security solutions, leveraging their value while reducing the time and costs of identifying risks, addressing gaps and demonstrating compliance.

Microsoft System Center Service Manager is an integrated platform for automating and adapting your organization's IT service management best practices, such as those found in Microsoft Operations Framework (MOF) and Information Technology Infrastructure Library (ITIL). It provides built-in processes for incident and problem resolution, change control, and asset lifecycle management. Through its configuration management database (CMDB) and process integration, Service Manager automatically connects knowledge and information from System Center Operations Manager, System Center Configuration Manager and Active Directory.

ExoIS provides Information Security, Compliance and IT advisory and support to businesses, helping our clients identify and mitigate the risks inherent in today's increasingly interconnected business environments. As a PCI Qualified Security Assessor, today our services include a wide range of PCI services and other security and compliance offerings, covering the full spectrum of our clients' information security requirements. We also offer a range of managed services including secure cloud hosting, datacenter outsourcing, compliant SaaS solutions and storage services. As a UCF partner, we offer discounted rates on services to all UCF customers.

MetricStream offers an advanced and comprehensive IT GRC software solution suite for streamlining these processes and effectively managing IT risk and meeting IT regulatory requirements. MetricStream enables companies to implement a formal framework to ensure rigor around how to measure, mitigate, and monitors IT risks. It eases complying with many regulations governing data retention, privacy, confidential information, financial accountability and recovery from disasters reduce the cost of compliance.

Stay tuned for more information on our Japanese partner.

NetIQ's Security and Compliance Management solution reduces enterprise risk, decreases compliance costs, and increases the security of critical information assets. Intelligent and integrated management of user activity and control of system configuration directly addresses the most significant security problems facing the enterprise. Automating the compliance and security processes reduces costs and helps you more easily protect critical servers, applications and customer data through scalable and streamlined security and compliance programs.

OpenPages ITG aligns IT policy, risk and operations management with corporate business initiatives, strategy and operational standards. Leveraging a core, shared-services and open architecture, OpenPages ITG makes IT risk and compliance management achievable, enabling organizations to sustain compliance across multiple IT best practice frameworks and regulations such as CoBIT, ISO 17799 (renumbered ISO/IEC 27002), and ISO/IEC 27001, while managing internal IT control and risk according to the business processes they support. OpenPages ITG unites multiple silos of IT risk and compliance to deliver improved visibility, better decision support, performance and stronger valuation.

Policy and Procedure Manager is an online, web-based software for policy & procedure management.The software automates the entire document life cycle and takes the stress out of policy management, governance, and compliance. Includes Automation, Quick Retrieval, Organization, Performance Improvement, Proof of Compliance, Simple Setup, and Security.

Rsam is a 7th generation governance, risk & compliance (GRC) platform integrating business criticality, regulatory assessment data, vulnerabilities & findings to provide enterprise risk visibility, oversight & assurance. Since 2003, Rsam has successfully implemented its GRC software solution for hundreds of large, marquee organizations across many vertical industries as well as small-medium enterprises that are looking for structure and rapid, out of the box deployment. Modular solutions and robust content support Assessment, Audit, Compliance, Incident Management, Issues/Remediation, Policy Exceptions, Threat/ Vulnerabilities, & Vendor Risk.

Delivered via a software-as-a-service model, the TruComply GRC platform contains three modules: TruComply - The base IT GRC platform for clients who need to address multiple compliance requirements. TruPCI - For organizations with an immediate need to achieve and maintain PCI DSS compliance. TruAware - An optional module to provide a complete security awareness program, including policy lifecycle management and training via eLearning.