FFIEC News

Modulo to Unveil its HIPAA Compliant Multi-regulatory Compliance Solution at Gartner Summit 2008

(March 03, 2008)-- Modulo, provider of IT GRC solutions will introduce MetaFramework, a multi-regulatory compliance solution for meeting mandates and guidelines such as SOX, PCI, FISMA, ISO 27002 (17799), ISO 27001, HIPAA, NERC CIP, COBIT, DIACAP, A130 and FISAP at the Gartner Compliance and Risk Management Summit 2008.

The new part of Modulo Risk Manager features -- considered one of the world's top IT GRCM solutions according to Gartner's IT governance, risk and compliance management (GRCM) research divulged last month -- allows the user to produce a rating and set of reports for any of the contained standards.

Based on Modulo's experience developing tools for risk management and compliance, MetaFramework is composed of a group of requirements that are already registered in the system and have the capability to evaluate controls and store evidences, such as a HIPAA rating/report, a PCI report or a NIST rating. All the information is automatically organized, which enables the IT security staff to gather and store evidence using a risk management approach.

By using Modulo MetaFramework, the organization is able to execute auditing processes efficiently and with lower costs, manage the security requirements (eliminating redundant costs and unnecessary controls) and obey laws, regulations and other current standards.

"The security department must understand and meet those requirements, identifying the ones that will be implemented, and provide the conditions to reach compliance," says Alvaro Lima, Modulo's co-founder. Nowadays the main challenge is to find a solution for each requirement and demonstrate compliance, since both procedures are necessary for auditing processes.

Despite this difference, the security controls are frequently the same. "The CSO needs to know the laws and regulations to find the best compliance practices in order to implement the controls and register the evidences that demonstrate compliance. This process creates a group of results that is very difficult to manage. Modulo developed a solution that helps companies deal with all these procedures just once," says Mr. Lima.

Top IT GRCM Solution -- According to Gartner's IT governance, risk and compliance management (GRCM) research, divulged last month, Modulo Risk Manager was recognized as one of the top IT GRCM tools. The solution was elected one of the best governance, risk management and compliance solutions because of its well-developed capabilities in the areas of controls mapping and policy management. Gartner also pointed out that Modulo Risk Manager provides good support for self-assessment and controls management use cases.

Share or bookmarklet this web page at: