http://www.compliancehome.com/ ComplianceHome is one of the Web's largest library of resources for compliance management of HIPAA, SOX, FISMA, GLBA, FDA, COOP & COG, FFIEC, Basel II, OSHA and ISO 27002/17799. Visit our directories which are the best source on White papers, related news articles, resources on the web, training, webinars, conferences, rules & regulation overview, ask the expert, job and search on vendors, solutions & products. http://www.compliancehome.com/images/rsslogo.gif http://www.compliancehome.com/ en-us Tue, 06 May 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12724.html Compliance Coach, a provider of automated regulatory compliance solutions to the financial services industry, announced that it has identified 23 new identity theft red flags and has updated its software, CompliancePal (http://www.compliancepal.com). CompliancePal is the industrys first software solution to enable compliance with the FACT Act Identity Theft Red Flags Rule. The Federal regulation imposes new responsibilities on businesses to prevent consumer identity theft. The impact is broad and the rule affects every single bank, credit union, mortgage lender, auto dealer, credit card lender, payday lender, landlord, utility company, phone company, and any consumer or small business lender in the country. http://www.compliancehome.com/news/FISMA/12724.html Wed, 23 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12667.html Grupo Gesfor and Ounce Labs announced a global alliance partnership to provide Ounce Lab's application security solutions throughout Spain and Latin America. Grupo Gesfor will provide marketing, sales, and implementation support to companies in these regions interested in Ounce Labs' leading source code analysis solution that addresses the increasing risks insecure software poses to their brands and ongoing operations. Grupo Gesfor has a proven track in working with best of breed IT security solutions and implementing software security tools. Grupo Gesfor will work with Ounce Labs to expand its presence in Latin America and Spain by working closely with the company and its subsidiaries in countries including Argentina, Brazil, Chile, Colombia, Panama, Peru, Mexico and Venezuela to manage their customer's application risk by identifying and remediating security issues caused by software security vulnerabilities. http://www.compliancehome.com/news/FISMA/12667.html Tue, 22 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12659.html AlterPoint announced the release of advanced network security and compliance capabilities for NetworkAuthority, its flagship open network management solution, which will help customers automatically discover, prioritise and remediate network vulnerabilities and compliance policy violations as they occur. As a result, enterprises will be able to reduce the time, cost and level of expertise required to keep complex, multi-vendor networks audit-ready and secure against constantly evolving threats. As the complexity of managing network security continues to increase, our customers are looking for a more efficient and cost-effective alternative to manual management processes, said Roddy MacLennan, sales director at Devoteam UK. We recommend adoption of an automated management solution that enforces security and compliance policies and eliminates the need to manage configurations at the device level. http://www.compliancehome.com/news/FISMA/12659.html Tue, 22 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12654.html Skybox Security announces the fourth-generation of its security risk management software platform. Over 125 of the world's largest companies have adopted Skybox's unique combination of analytics and automation. With Skybox View organizations can accurately pinpoint and prioritize areas of high risk and predict compliance exposures in just minutes. http://www.compliancehome.com/news/FISMA/12654.html Thu, 17 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12642.html IPv6 readiness and virtualization management proved to be key issues in the second annual Federal IT Trends Survey, conducted by IT management solutions provider ScienceLogic. Administered at FOSE 2008, over 100 federal agency IT managers, systems administrators and network engineers were polled on various topics within federal IT, including Green IT solutions, virtualization and FISMA compliance. Surprisingly, only 65 percent of agency IT personnel surveyed say that IPv6 is important to their operations - making this issue second to last on the list of priorities covered by the survey. Last year, an equal number of respondents, 1 in 5, said that their agencies would and would not meet the June 2008 mandate for IPv6. This year, the numbers went up, 1 in 3, but the respondents remain equally split on whether or not their agencies will meet the mandate. http://www.compliancehome.com/news/FISMA/12642.html Tue, 15 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12625.html lterPoint announced it will debut advanced network security and compliance capabilities for NetworkAuthority, its flagship open network management solution, at Infosecurity Europe 2008, taking place 22-24 April at the Olympia Grand Hall in London, UK. NetworkAuthority's open network model enables businesses to create and maintain a comprehensive inventory of all network assets, including hardware, software and configuration data. The product combines policy-based management and advanced network analytics to provide deep visibility into the performance, compliance and security posture of complex networks ' enabling customers to reconcile strategic business decisions with real-time operational data. http://www.compliancehome.com/news/FISMA/12625.html Tue, 15 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12624.html Orchestria has announced that its Intelligent Compliance Suite has been deployed for full-service brokerage and investment banking firm Scott & Stringfellow, a subsidiary of BB&T Corporation. Orchestria's policy-based Intelligent Compliance software is employed to analyze all electronic communication channels in support of SEC, FINRA, and company governance priorities. Scott & Stringfellow has also chosen to implement Orchestria's desktop and server agents throughout its organization. http://www.compliancehome.com/news/FISMA/12624.html Mon, 14 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12613.html Research and Markets has announced the addition of EthicsPoint: Transforming Compliance into Business Process ROI to their offering. Portland, Oregon-based SaaS service provider EthicsPoint focuses on turning ethical and compliance issues into business practices that reach beyond HR and corporate attorneys offices to support actions and provide benefits throughout the organization. Founded in 1999, EthicsPoint focuses on highly regulated industries such as banking and financial, mining, health care, pharmaceuticals, retail, manufacturing, and transportation. http://www.compliancehome.com/news/FISMA/12613.html Fri, 11 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12601.html Tenable Network Security Tenable Network Security is the leader in unified security monitoring. Tenable provides agentless solutions for continuous monitoring of vulnerabilities, configurations, sensitive data detection, log analysis and compromise detection. Tenable's award-winning products are utilized by many Global 2000 organizations and Government agencies to proactively minimize network risk. For more information, please visit http://www.tenablesecurity.com or email sales@tenablesecurity.com. Contact Information: Jack Huffard, Tenable Network Security 410-872-0555 media@tenablesecurity.com http://www.compliancehome.com/news/FISMA/12601.html Wed, 09 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12583.html Security solutions developer High Tower Software has released a security appliance designed to help IT personnel in smaller organizations mitigate network security risks and better manage regulatory compliance. Called Cinxi Express, the new product is a Security Information Event Manager (SIEM) that collects log data from network devices, applications and users, analyzes the information to assess potential security and compliance threats, and alerts personnel when risks are detected. Like High Tower's enterprise-class Cinxi SIEM solutions, Cinxi Express delivers a full suite of log management, threat response, compliance monitoring, and data forensics capabilities organizations need to ensure that networks are secure and operating within corporate and regulatory guidelines. http://www.compliancehome.com/news/FISMA/12583.html Wed, 09 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12578.html Configuresoft announced that it has enhanced its continuous compliance and security capabilities for VMware environments with support for the Center for Internet Security (CIS) VMware ESX Server Benchmark. Support for this Benchmark enables IT Operations to easily measure compliance with best practices for hardening virtual environments from a broad consensus of industry experts. Last year, at a birds-of-a-feather session at RSA, CIS and Configuresoft developed a benchmark working group and with input from more than 200 virtualization and security experts from the commercial market, federal organizations, manufacturers and the software industry created the industry's first virtual machine security benchmark. CIS benchmarks and guidelines are unique in the industry in that they are created via broad consensus. This benchmark extends and enhances the hardening guidelines offered by the manufacturers by consolidating the expert opinion of the world's leading security professionals. http://www.compliancehome.com/news/FISMA/12578.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12566.html McAfee announced the formation of a new business unit focused on IT governance, risk and compliance. The new Risk and Compliance Business Unit will focus on driving innovation and extending McAfee's lead in security risk management. Led by George Kurtz, senior vice president and general manager at McAfee, the business unit will accelerate McAfee's leadership position in the rapidly growing governance, risk and compliance market. Government regulations and corporate policies demand that businesses prove their ability to comply with IT security policies designed to minimize risk. The Risk and Compliance Business Unit will provide McAfee with a greater focus on aggressively enhancing, integrating and adding content to its current risk and compliance offerings. The company will also concentrate efforts to include tighter cross-product integration with other McAfee products. http://www.compliancehome.com/news/FISMA/12566.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12565.html Voltage SecureData Grows Momentum With Major Integrators and Global 2000 Companies. Leading organizations standardize on advanced cryptographic solution to foil identity theft, speed compliance efforts, protect outsourced environments and avoid public data breach disclosures. http://www.compliancehome.com/news/FISMA/12565.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12564.html Secure Computing Announces New TrustedSource Alliance: Makes TrustedSource World-Class Reputation System Available To Partners. Members include Foundry, F5, Riverbed, and Webroot http://www.compliancehome.com/news/FISMA/12564.html Mon, 07 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12554.html Finjan has released version 9.0 of its Vital Security Web appliances utilizing patented real-time content inspection technologies. Finjans award-winning appliances prevent Crimeware and malicious Web 2.0 content from infiltrating corporate networks and stealing business data. By inspecting inbound and outbound web traffic, malicious content is prevented in real time, also when hiding in SSL traffic. Vital Security version 9.0 introduces a new active real-time inspection technology from Finjan research lab. With this new version, organizations are equipped with an integrated dashboard that provides real-time information on the systems performance and security risk level. It uses an extensive set of graphs and views for quick and accurate insight. Security policies are managed quickly and easily with Finjans easy to use security policy decision-making system which includes a single-click rules refinement. http://www.compliancehome.com/news/FISMA/12554.html Mon, 07 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12553.html WinMagic announced that SecureDoc data protection software now supports UPEK fingerprint authentication. The companies' integrated solution is being demonstrated - for the first time - at the RSA Conference 2008. Enterprise businesses and government organizations face significant risks and penalties when laptops or portable storage media, containing valuable data assets or personal identifiable information (PII), go missing. SecureDoc's comprehensive end point data protection suite safeguards proprietary information and PII stored on mobile computers and portable media. With added support for UPEK fingerprint authentication, SecureDoc raises the stakes for both security and end user convenience, while reducing IT support costs. http://www.compliancehome.com/news/FISMA/12553.html Sun, 06 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12544.html Secure Elements has announced the company has been awarded a government-wide contract to provide the C5 Compliance Platform to all 27 Scorecard reporting agencies. Under the terms of the GSA FDCC contract, Secure Elements will provide, through its reseller partner FedResults, licenses and focused FDCC training to support OMB reporting requirements. The C5 Compliance Platform is the leading solution across the federal markets, and is the first SCAP validated solution for FDCC scanning of both Microsoft XP and Vista operating systems, To improve information security and reduce overall IT operating costs, the Office of Management and Budget (OMB) issued a policy last year requiring agencies using or acquiring Windows XP and Vista to adopt the Federal Desktop Core Configuration by February 1, 2008 (OMB Memorandum M-07-11 of March 22, 2007). This policy is consistent with the Federal Information Security Management Act of 2002, which requires agencies to continuously monitor and ensure comp http://www.compliancehome.com/news/FISMA/12544.html Fri, 04 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12537.html OAO Technology Solutions announced that it has entered into a strategic partnership agreement with Dulles, VA-based ServerVault Corp., a premier provider of highly secure and compliant managed hosting solutions. OAOT will employ a broad range of ServerVault's managed infrastructure solutions to deliver enhanced services to customers around the globe across three core lines of business: Human Capital Management Solutions, Strategic Business Solutions and Enterprise Management Solutions. http://www.compliancehome.com/news/FISMA/12537.html Tue, 01 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12515.html Modulo, provider of IT governance, risk and compliance management solutions will unveil the latest version of Modulo Risk Manager at the RSA 2008 Conference in San Francisco, April 7th through April 11th. Modulo's Risk Manager is a fully automated IT GRC solution which leverages the expertise of IT and Security professionals to cost-effectively manage security risks while enhancing the ability of organizations to comprehensively maintain regulatory and standards compliance. Based on Modulo's 23 years of highly focused experience in developing tools for IT governance, risk management and compliance, Modulo Risk Manager is an integrated solution for: Risk Management; Compliance with SOX, PCI DSS, ISO 27001, ISO 27002, COBIT, HIPAA, FISMA, DIACAP, A130, FISAP and BASEL II; Automating IT Governance Processes aligned with COBIT; Automating Business Continuity Management; Remediation and Incident Management. All required information is automatically organized allowing organizations to effici http://www.compliancehome.com/news/FISMA/12515.html Mon, 31 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12509.html Sixty-eight percent of employees admit to bypassing their employers information security controls in order to do their jobs, according to new research from IT Governance Limited. This finding suggests that, even in some of the most sophisticated and security-conscious organisations, managers are failing to understand the correct balance between the confidentiality and availability of information. By implementing the wrong policies and procedures, they are potentially putting their organisations at risk and may be undermining the legitimacy of information security in employees eyes. IT Governance Limited is the one-stop-shop for books, tools, training and consultancy on Governance, Risk and Compliance. In February 2008, it polled 130 technology and compliance professionals on issues concerning the UK Data Protection Act (DPA). The respondents included some of the best informed professionals in this area, as evidenced by the high proportion of organisations with independently certifi http://www.compliancehome.com/news/FISMA/12509.html Wed, 26 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12494.html IceWEB has received a contract for over $300,000 from a major Federal Government Agency for a Log Management and Intelligence Platform in conjunction with LogLogic of San Jose, California. As Enterprise Customers and Government agencies have moved to address new compliance requirements, the challenge of log data management and intelligence has only worsened. IceWEBs network security compliance experience and the LogLogic platform helps IT staffs find and report on mission-critical IT data buried in the terabytes of log data thereby simplifying compliance tasks, reducing cost and mitigating risks. LogLogics log collection platforms can hand off log data to IceWEB InLINE storage products allowing customers to retain log data for seven or more years to meet compliance requirements. http://www.compliancehome.com/news/FISMA/12494.html Wed, 26 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12492.html Achiever Plus was first released in 1994 and has now evolved into an integrated Governance Risk & Compliance management software solution, capable of meeting multiple corporate governance, risk management and compliance demands across a diverse range of industry sectors. For the C Level Executive: Easy to use and understand user interface allows all the compliance information needed to make decisions and be aware of to be displayed on your desktop in real time in the web browser. Also, additional expense for software, hardware, or technical training is not necessary. Achiever Plus .NET is utilizing the world's most widely accepted framework and technology issued or sanctioned by Microsoft. http://www.compliancehome.com/news/FISMA/12492.html Tue, 25 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12485.html Veracode, provider of on-demand application security testing solutions has entered into a partnership and reseller agreement with Patriot Technologies. As the go-to source for the Federal Governments information security solutions, Patriot will be reselling Veracode as well as using Veracode SecurityReview as a value-add to its OEM security appliance manufacturing business. Additionally, as part of the partnership, Veracode has been added to Patriots GSA schedule. The GSA establishes long-term government-wide contracts with commercial firms to provide a centralized delivery system of products and services to the federal government giving access to over 11 million commercial products and services that can be ordered directly from GSA Schedule contractors. http://www.compliancehome.com/news/FISMA/12485.html Tue, 25 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12484.html Amadeus International announced the availability of version 7.3 of its flagship product, eQCM.The release of Version 7.3 is consistent with Amadeus's commitment to provide a comprehensive business process management solution for highly regulated companies. Coordinating all Governance, Risk, Compliance (GRC) and quality management activities via a single robust and flexible system, the solution streamlines all documents, communications, information flows, and corporate business processes throughout a seamless environment. Version 7.3 builds upon the traditional strengths for which Amadeus is renowned - usability, flexibility, intuitiveness, reliability - and extends those characteristics to the following new functionalities and improvements to significantly increase operational efficiency and usability. http://www.compliancehome.com/news/FISMA/12484.html Tue, 25 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12482.html Complinet, provider of web-based dynamic compliance solutions to the financial services industry, has teamed up with Steven Lofchie, partner at the law firm of Cadwalader, Wickersham & Taft LLP and the author of Lofchies Guide To Broker-Dealer Regulation, to deliver Lofchies Procedure Manuals. These are innovative compliance and supervisory procedure manuals that have been produced under the direction of Mr. Lofchie to address the needs of financial firms for procedures that are industry-standardized, comprehensive, and straightforward and that will be maintained so that they are never out of date. Stephen Lofchie is a recognized expert in compliance procedures and regulations. His Guide to Broker-Dealer Regulation, published in 2000 and updated in electronic form on Complinet, has become a central text for regulatory guidance amongst financial services firms of all sizes. http://www.compliancehome.com/news/FISMA/12482.html Thu, 20 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12458.html LogLogic announced new straightforward appliances architected and priced specifically for the enterprise mid-market (annual revenues between $400 million and $1 billion). Without compromising the features and functionality that have made LogLogic the log management leader among the Fortune 500, these new log management appliances provide comprehensive log data compliance mandate assurance while making it easy for mid-market systems administrators to install, configure, operate and maintain them. Compliance mandates - including the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SOX) - now require companies to track, manage, and report on their log data in order to comply with regulations and promote internal security and availability. http://www.compliancehome.com/news/FISMA/12458.html Mon, 17 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12433.html Lancope, the provider of the StealthWatch System, the most widely used Network Behavior Analysis (NBA) and response solution, announced that BlueCross BlueShield of Tennessee is using StealthWatch to strengthen information security and improve overall network management. BlueCross BlueShield of Tennessee relies on the StealthWatch System to monitor its entire network for potential security threats. In addition, StealthWatch helps the health plan provider diagnose latency and availability issues on its network. StealthWatch also aids regulatory compliance efforts for BlueCross BlueShield of Tennessee by providing detailed insight into network behavior and user activity. http://www.compliancehome.com/news/FISMA/12433.html Thu, 13 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12419.html (ISC)2 (ISC-squared), the non-profit global leader in educating and certifying information security professionals throughout their careers, today announced that its Information Systems Security Management Professional (ISSMP) and Certification and Accreditation Professional (CAP) have been accredited by the International Organization for Standardizations (ISO) United States representative, the American National Standards Institute (ANSI). With this latest accreditation, all core credentials offered by (ISC)2 are now recognized as meeting internationally recognized standards in professional certifications. We are pleased that the ISSMP and CAP credentials have been officially recognized as meeting the high standards set by ISO and adopted as an American National Standard, said Eddie Zeitler, CISSP, executive director of (ISC)2. The CISSP was the first information technology-related credential to earn accreditation for personnel certification. Weve worked hard to maintain accredit http://www.compliancehome.com/news/FISMA/12419.html Thu, 13 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12417.html Intelliden announced the release of Policy Based Compliance Management 2.0 (PBCM 2.0), the latest version of its total network compliance solution that automatically defines and manages network policies to meet regulatory, operational and industry compliance mandates, in addition to managing and resolving configuration-related security vulnerabilities in real-time. Designed to give network-driven companies greater network control, management and scalability, PBCM 2.0 boasts new and enhanced functionality to help lower the cost of network compliance and audits, accelerate discovery and remediation of configuration-related vulnerabilities and ensure the highest degree of network availability and business continuity. It also combines automated compliance with intelligent remediation, unmatched usability, and support for an unlimited number of policies to meet the needs of the largest and most complex networks. http://www.compliancehome.com/news/FISMA/12417.html Tue, 11 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12402.html Woodside, Australia's largest publicly traded oil and gas exploration and production company, is deploying the Sourcefire 3D System to improve its global network security with increased network visibility and proactive threat protection. The Sourcefire 3D System provides Woodside with a combination of Network Behavior Analysis (NBA) and leading-edge IPS capabilities that allow the company to safeguard its assets across four continents. Sourcefire RNAs real-time visibility enables Woodside to easily identify new systems, vulnerabilities and policy violations throughout its worldwide network without impacting network performance. The company then uses this information to proactively enforce policies and tune its security devices for increased accuracy and protection. In addition, Sourcefire 3Ds innovative Compliance Whitelist capability enables Woodside to automate many of its security and compliance activities, so that it can easily define acceptable and unacceptable network activity http://www.compliancehome.com/news/FISMA/12402.html Tue, 11 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12401.html Kaplan Financial Compliance, a provider of services and technology solutions for the insurance and securities industries to help manage the producer/representative on-boarding process and career cycle, has introduced an innovative Just in Time appointment processing capability in its CMS G2(TM) compliance solution. The new automated feature is designed to cut down on unnecessary state appointment processing fees paid by carriers. http://www.compliancehome.com/news/FISMA/12401.html Fri, 07 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12390.html Cloakware, the security solutions provider that makes security inseparable from software, announced Nautilus, Inc. has successfully deployed Cloakware Server Password Manager (CSPM) to achieve compliance with PCI Digital Security Standards (PCI DSS) and audit reporting requirements. CSPM, the industrys first commercial Shared Account/Service Account Password Management (SAPM) tool, allows enterprises to bolster the protection of critical data, complete identity management strategies and manage commercial and government compliance programs, such as PCI DSS and Sarbanes-Oxley. Nautilus, promotes its popular exercise equipment through a variety of sales channels including direct marketing, retail, commercial, Internet, catalog and international distributors. Because the companys sales are predominately direct to consumer, the company faces a mandate to meet new and evolving security and compliance standards including PCI and government regulations such as Sarbanes-Oxley. Nautilus turned http://www.compliancehome.com/news/FISMA/12390.html Fri, 07 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12388.html TerraNua, provider of risk and compliance solutions to the U.S. wealth management market, announced that Artha Capital Management, a Stamford, CT-based alternative investment firm, has signed a contract to utilize the firm's proprietary software solution, MyComplianceOffice for its compliance reporting needs. A strong culture of compliance and established procedures are more prominent and critical for hedge funds in today's regulatory environment, said Adam Jaffe, chief compliance officer of Artha Capital Management. MyComplianceOffice provides us with a comprehensive, flexible, automated solution that will allow us to effectively monitor and, more importantly, document our compliance activities so that we can avoid any potential hazards. Having the MyCompliance Dashboard is an invaluable tool that allows me to visualize the company's adherence to its compliance mandates. http://www.compliancehome.com/news/FISMA/12388.html Thu, 06 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12385.html FaceTime Communications, provider of solutions that control greynets and manage unified communications (UC) in the enterprise, today announced availability of an enhanced version of IMAuditor. It enables enterprises to benefit from their IBM Lotus Sametime and Microsoft Office Communications Server deployments with a highly available, fault-tolerant and enhanced security and compliance infrastructure that includes support for new modalities like VoIP, video and Web conferencing. FaceTime has seen growing concern among large organizations over the past several weeks, examining their ability to log, archive and retrieve instant messages. http://www.compliancehome.com/news/FISMA/12385.html Thu, 06 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12383.html Secure Computing Corporation has released SecurityReporter, a new security event management (SEM) reporting solution for both Sidewinder and SnapGear appliances. SecurityReporter software delivers central monitoring, correlated alerting and reporting of Sidewinder and SnapGear audit streams to identify real security threats from meaningless noise. It provides immediate action points to keep the enterprise or small- to mid-size business safer, and the graphically rich tool strengthens overall security, provides evidence of regulatory compliance, and proves the effectiveness and value of IT's security investment to management. Today, IT administrators face a challenge of getting actionable information from the vast audit and log data associated with the many layers of security systems now required to keep corporate assets safe. As hacker and malware threats increase exponentially, they become more complicated to manage. And, with increasing regulatory compliance obligations, administrato http://www.compliancehome.com/news/FISMA/12383.html Wed, 05 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12377.html Websense introduced new messaging security solutions, including a new hybrid hosted and on-premise e-mail security solution, that give businesses broader protection from e-mail security threats and expanded regulatory and policy compliance capabilities. Websense has delivered on its promise to customers and the industry by investing in messaging security products acquired from SurfControl, said Jay Wessel, vice president of technology for the Boston Celtics. We chose Websense Email Security because of its phenomenal e-mail security protection and its granular policy enforcement capabilities that clearly outshine other solutions on the market. Websense provides essential protection to our organization. http://www.compliancehome.com/news/FISMA/12377.html Tue, 04 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12367.html Secure Computing Corporation announced the availability of SecurityReporter, a new security event management (SEM) reporting solution for both Sidewinder and SnapGear appliances. SecurityReporter software delivers central monitoring, correlated alerting and reporting of Sidewinder and SnapGear audit streams to identify real security threats from meaningless noise. It provides immediate action points to keep the enterprise or small- to mid-size business safer, and the graphically rich tool strengthens overall security, provides evidence of regulatory compliance, and proves the effectiveness and value of IT's security investment to management. Today, IT administrators face a challenge of getting actionable information from the vast audit and log data associated with the many layers of security systems now required to keep corporate assets safe. As hacker and malware threats increase exponentially, they become more complicated to manage. And, with increasing regulatory compliance obligati http://www.compliancehome.com/news/FISMA/12367.html Mon, 03 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12362.html Single monitoring and reporting solution for enterprise and branch office firewalls strengthens security, provides regulatory compliance and demonstrates ROI http://www.compliancehome.com/news/FISMA/12362.html Mon, 03 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12359.html Modulo, provider of IT GRC solutions will introduce MetaFramework, a multi-regulatory compliance solution for meeting mandates and guidelines such as SOX, PCI, FISMA, ISO 27002 (17799), ISO 27001, HIPAA, NERC CIP, COBIT, DIACAP, A130 and FISAP at the Gartner Compliance and Risk Management Summit 2008. The new part of Modulo Risk Manager features -- considered one of the world's top IT GRCM solutions according to Gartner's IT governance, risk and compliance management (GRCM) research divulged last month -- allows the user to produce a rating and set of reports for any of the contained standards. http://www.compliancehome.com/news/FISMA/12359.html Fri, 29 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12350.html The Federal government is preparing to release ten contracts valued at $812 million with work relating to agency information security efforts in Fiscal Year 2008 (FY08), according to a report released by INPUT, the authority on government business. 80% of these top 10 opportunities are recompete contracts, revealing the current focus on steady-state operations. INPUT expects the federal information security market to grow by nearly 10% between FY08 and FY09 with FY09 being the year where vendors may begin to see larger infusions of cyber security spending into agency budgets. http://www.compliancehome.com/news/FISMA/12350.html Thu, 28 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12345.html WinMagicR Data Security, the innovative leader in endpoint security announced that it has been awarded a National Master Standing Offer (NMSO) by Public Works and Government Services Canada (PWGSC). This award makes it simple for resellers to provide Canadian government departments and agencies with WinMagic's SecureDoc full-disk encryption to ensure all data on desktops, laptops, PDAs, and removable media such as USB drives, thumb drives, DVDs, and CDs is protected. Any Canadian government agency or department simply has to place an order to purchase SecureDoc at a guaranteed price. Elytra Enterprises is pleased to be the designated point of contact for federal departments interested in purchasing this 'made-in-Canada' advanced security solution, said Randy Sutton, President, Elytra Enterprises. The NMSO award will simplify the purchasing process for federal departments which will certainly make it easier for resellers to sell SecureDoc to the Canadian Government, Sutton continued. El http://www.compliancehome.com/news/FISMA/12345.html Tue, 26 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12326.html With intrusion attempts from terrorists, spies and hackers at an all-time high worldwide and the White House proposing more than $6 billion in funding to protect government networks, Guidance Software, the World Leader in Digital Investigations, announced new capabilities that allow federal agencies to identify, assess and remediate policy violations and vulnerabilities across the network. These capabilities are part of Guidance Softwares EnCase Information Assurance solution which is designed for government agencies to protect networks, detect and successfully react to information attacks, and remediate sensitive data leakage. Guidance Software also unveiled the EnCase Bit9 Analyzer, a new product that allows federal agencies to determine the threat level of files and running processes on their networks. Guidance Softwares EnCase Information Assurance solution automates crucial Information Assurance processes, such as classified spillage auditing, auditing of system processes, inci http://www.compliancehome.com/news/FISMA/12326.html Thu, 21 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12304.html Nvolve has seen a major increase in sales due to the release of the Nvolve Response - Training and Compliance Management Made Easy solution to the Medical Devices and Pharmaceutical market. Nvolves expertise and management software solution helps organisations meet their regulatory requirements when it comes to the management and reporting of training activities. These tasks are normally essential and/or critical for compliance purposes and management reporting, and are in most cases extremely time consuming, highly costly and distracting from core business activities. http://www.compliancehome.com/news/FISMA/12304.html Thu, 21 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12303.html MetricStream announced a new release of its Compliance Management application. The new release is designed to manage compliance with multiple regulations across complex organizational structures through a common framework. As the multiple compliance initiatives become more intertwined from regulatory and organizational perspectives, Compliance Officers are focusing on effective rationalization of controls to provide a clear, unambiguous process for compliance management and to deliver a single point of reference for the organization. The new release of the Compliance Management application provides a configurable framework to document processes, risks and controls across multiple areas of compliance including cross-industry mandates and regulations such as SOX, OSHA, EH&S and FCPA as well as the industry focused regulatory guidelines from FDA, NASD, FERC, PCI, FAA, HACCP, AML, Basel II and data retention laws. The documentation can be applied across a hierarchical organization structur http://www.compliancehome.com/news/FISMA/12303.html Wed, 20 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12300.html WinMagicR Data Security, pioneer in endpoint security, announced that it has partnered with MXI SecurityT, the leader in managed portable security solutions, to integrate the companies' endpoint security solutions. WinMagic and MXI Security will introduce support for MXI Security Stealth MXPT and Outbacker MXPT portable security devices within WinMagic's SecureDocT security suite, to provide customers with greater choice and increased efficiencies from consolidated management. MXI Security's award-winning Stealth MXP and Outbacker MXP are perfect complements to WinMagic's proven encryption solutions for laptops, PDAs, removable media and data files, said Lawrence Reusing, Chief Executive Officer of MXI Security. Our integrated solution will provide security-conscious customers with many more choices for protecting sensitive mobile data, and the confidence of knowing that each option they choose to deploy delivers robust, FIPS-approved security. http://www.compliancehome.com/news/FISMA/12300.html Wed, 13 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12269.html NitroSecurity, a provider of high performance, unified information security solutions, announced the availability of a new All-in-One model in the NitroView Enterprise Security Manager (ESM) family. The new product provides Unified Security Management (USM) by incorporating the functionalities of Security Information and Event Management (SIEM), Log Management and Network Behavior and Anomaly Detection (NBAD) into a single, 5,000 event per second, 1U appliance. While all products in the NitroView ESM family deliver Unified Security Management, this newest addition allows businesses to purchase a single appliance, with no requirement for additional hardware or software probes or agents to provide data collection and normalization. With this new addition to the NitroView suite of products, NitroSecurity delivers holistic security management that enable businesses of all sizes to lower their cost of acquisition, deployment and operation. http://www.compliancehome.com/news/FISMA/12269.html Tue, 12 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12261.html Xceedium, provider of solutions that enforce security policy and validate compliance for technical users, announced that E*TRADE FINANCIAL Corp. has chosen the Xceedium GateKeeper to enhance and automate its security policy for technical users -- while implementing and validating controls that meet compliance mandates. GateKeeper is expected to play a fundamental role in automating the controls E*TRADE has in place to protect and compartmentalize its infrastructure. http://www.compliancehome.com/news/FISMA/12261.html Tue, 12 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12257.html Attachmate Corporation announced that it has validated multiple products as compliant with critical Federal Desktop Core Configuration (FDCC) standards.The FDCC, a mandate of the Office of Management and Budget (OMB), is a set of security configurations developed by the National Institute of Standards and Technology (NIST) which cover Microsoft Windows Vista and Windows XP operating system software. FDCC-compliant products are those products compatible with the heightened security settings required on Microsoft Windows Vista and Windows XP operating systems deployed by U.S. government agencies. http://www.compliancehome.com/news/FISMA/12257.html Mon, 11 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12249.html Secure Computings Webwasher Ranks #1 With A 99.9 Percent Catch Rate In A New Anti-Malware Study. Test shows Webwasher accurately differentiates between malicious and non-malicious files, keeping false positives to an absolute minimum. http://www.compliancehome.com/news/FISMA/12249.html Wed, 06 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/FISMA/12226.html Agiliance, provider of IT governance, risk and compliance (IT-GRC) solutions, announced the acquisition of Phulaxis, Inc., a privately funded provider of IT and business compliance solutions. The Phulaxis technology, which Agiliance has re-launched as the new Controls Automation module for Agiliance IT-GRC 3.0, extends Agiliances automated controls for configuration, vulnerability and security management to now include automated user access controls for identity management systems, middleware, databases and applications. With this acquisition, Agiliance fulfills a key requirement of its strategic product roadmap for managing the entire IT risk and compliance lifecycle. http://www.compliancehome.com/news/FISMA/12226.html