http://www.compliancehome.com/ ComplianceHome is one of the Web's largest library of resources for compliance management of HIPAA, SOX, FISMA, GLBA, FDA, COOP & COG, FFIEC, Basel II, OSHA and ISO 27002/17799. Visit our directories which are the best source on White papers, related news articles, resources on the web, training, webinars, conferences, rules & regulation overview, ask the expert, job and search on vendors, solutions & products. http://www.compliancehome.com/images/rsslogo.gif http://www.compliancehome.com/ en-us Tue, 06 May 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12724.html Compliance Coach, a provider of automated regulatory compliance solutions to the financial services industry, announced that it has identified 23 new identity theft red flags and has updated its software, CompliancePal (http://www.compliancepal.com). CompliancePal is the industrys first software solution to enable compliance with the FACT Act Identity Theft Red Flags Rule. The Federal regulation imposes new responsibilities on businesses to prevent consumer identity theft. The impact is broad and the rule affects every single bank, credit union, mortgage lender, auto dealer, credit card lender, payday lender, landlord, utility company, phone company, and any consumer or small business lender in the country. http://www.compliancehome.com/news/GLBA/12724.html Thu, 01 May 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12706.html Verizon Business announced several enhancements to its Partner Security Program (PSP), which helps customers address the increased security risks associated with opening up corporate networks to partners, vendors, customers and other business units. The enhancements consist of additional support for the Payment Card Industry Data Security Standard (PCI DSS), customized reporting capabilities across multiple security standards and regulations, as well as the ability to better manage supporting documentation. The enhanced program provides an extended enterprise - a business and all its locations, customers, suppliers, partners and employees - with a comprehensive view of its partners information security activities and a Web-based platform for automated compliance management and reporting. http://www.compliancehome.com/news/GLBA/12706.html Tue, 29 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12695.html Seaboard Marine, a shipping company, has selected ATTUS Technologies' WatchDOG Pro compliance solution to address the regulatory requirements of the Department of Treasury's Office of Foreign Assets Control. All U.S. firms are mandated by federal regulations to adhere to the requirements under Executive Order 13224 signed by President Bush on September 24, 2001. We are pleased that Seaboard Marine will be utilizing our regulatory compliance solutions, said Tom Fedell, president and CEO of ATTUS Technologies, Inc. The procedures and policies Seaboard Marine has instituted to adhere to federal regulations and requirements are above and beyond the norm. Not only are they protecting their clients but all U.S. citizens. http://www.compliancehome.com/news/GLBA/12695.html Wed, 23 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12668.html AXIGEN, the professional messaging solution vendor, and Stimulus Software, vendor of the MailArchiva email archiving system, announced today the closure of a partnership aimed at integrating email messaging and archiving functionalities. Through this strategic technology integration, the two companies aim to pro-actively address the issues arising for businesses of all sizes that work towards complying with IT Governance standards and concepts. The joint AXIGEN Mail Server - MailArchiva solution will provide all functionalities of a complete email messaging and archiving solution. It features reliability and security in both messaging and archiving activities, quick access to information based on advanced search criteria, a smart storage system preventing overhead and compliance with highly debated international standards such as the Sarbanes Oxley act (SOX), Gramm-Leach Bliley act (GLBA) and the Freedom of Information act (FOIA). http://www.compliancehome.com/news/GLBA/12668.html Wed, 23 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12666.html Zix Corporation, the leader in hosted services for email encryption and e-prescribing, announced the availability of ZixDirect 3.0, allowing clients to send encrypted email using push technology through a web interface. ZixDirect 3.0 is the latest generation of the company's push technology, which instantly sends secure messages directly to a user's inbox. ZixCorp remains the de facto standard for hosted email encryption with more than 10 million protected email addresses in the ZixDirectory. The new ZixDirect 3.0 release allows ZixCorp customers to run push technology through a web interface, allowing the user to access secure messages with nothing more than an internet browser, said Nigel Johnson vice president of product management and business development for ZixCorp. ZixCorp's Email Encryption Service has always been easy to use, which is ideal for a health, financial or government system of any size. Our clients benefit from the elimination of the intense time and resources spent http://www.compliancehome.com/news/GLBA/12666.html Tue, 22 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12659.html AlterPoint announced the release of advanced network security and compliance capabilities for NetworkAuthority, its flagship open network management solution, which will help customers automatically discover, prioritise and remediate network vulnerabilities and compliance policy violations as they occur. As a result, enterprises will be able to reduce the time, cost and level of expertise required to keep complex, multi-vendor networks audit-ready and secure against constantly evolving threats. As the complexity of managing network security continues to increase, our customers are looking for a more efficient and cost-effective alternative to manual management processes, said Roddy MacLennan, sales director at Devoteam UK. We recommend adoption of an automated management solution that enforces security and compliance policies and eliminates the need to manage configurations at the device level. http://www.compliancehome.com/news/GLBA/12659.html Tue, 22 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12658.html Qualys announced QualysGuard 6.0, an upgrade to its flagship solution for vulnerability and compliance management. QualysGuard 6.0 enables security managers, as well as key organisation executives, including business line managers, members of the board and auditors, to get an on demand view of IT security and compliance within the enterprise. QualysGuard 6.0 offers new metrics reporting supported by scorecards and secure, collaborative report distribution workflows which help operations and IT staff to be efficient and communicate effectively with auditors and executive management. QualysGuard 6.0 is an integral component of the QualysGuard Security and Compliance Suite also being demonstrated at the Infosecurity Europe tradeshow for the first time in Europe. The QualysGuard Software-as-a-Service (SaaS) suite helps organisations worldwide manage the ongoing convergence of security and policy compliance efforts. http://www.compliancehome.com/news/GLBA/12658.html Tue, 15 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12625.html lterPoint announced it will debut advanced network security and compliance capabilities for NetworkAuthority, its flagship open network management solution, at Infosecurity Europe 2008, taking place 22-24 April at the Olympia Grand Hall in London, UK. NetworkAuthority's open network model enables businesses to create and maintain a comprehensive inventory of all network assets, including hardware, software and configuration data. The product combines policy-based management and advanced network analytics to provide deep visibility into the performance, compliance and security posture of complex networks ' enabling customers to reconcile strategic business decisions with real-time operational data. http://www.compliancehome.com/news/GLBA/12625.html Tue, 15 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12624.html Orchestria has announced that its Intelligent Compliance Suite has been deployed for full-service brokerage and investment banking firm Scott & Stringfellow, a subsidiary of BB&T Corporation. Orchestria's policy-based Intelligent Compliance software is employed to analyze all electronic communication channels in support of SEC, FINRA, and company governance priorities. Scott & Stringfellow has also chosen to implement Orchestria's desktop and server agents throughout its organization. http://www.compliancehome.com/news/GLBA/12624.html Mon, 14 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12613.html Research and Markets has announced the addition of EthicsPoint: Transforming Compliance into Business Process ROI to their offering. Portland, Oregon-based SaaS service provider EthicsPoint focuses on turning ethical and compliance issues into business practices that reach beyond HR and corporate attorneys offices to support actions and provide benefits throughout the organization. Founded in 1999, EthicsPoint focuses on highly regulated industries such as banking and financial, mining, health care, pharmaceuticals, retail, manufacturing, and transportation. http://www.compliancehome.com/news/GLBA/12613.html Wed, 09 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12583.html Security solutions developer High Tower Software has released a security appliance designed to help IT personnel in smaller organizations mitigate network security risks and better manage regulatory compliance. Called Cinxi Express, the new product is a Security Information Event Manager (SIEM) that collects log data from network devices, applications and users, analyzes the information to assess potential security and compliance threats, and alerts personnel when risks are detected. Like High Tower's enterprise-class Cinxi SIEM solutions, Cinxi Express delivers a full suite of log management, threat response, compliance monitoring, and data forensics capabilities organizations need to ensure that networks are secure and operating within corporate and regulatory guidelines. http://www.compliancehome.com/news/GLBA/12583.html Wed, 09 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12578.html Configuresoft announced that it has enhanced its continuous compliance and security capabilities for VMware environments with support for the Center for Internet Security (CIS) VMware ESX Server Benchmark. Support for this Benchmark enables IT Operations to easily measure compliance with best practices for hardening virtual environments from a broad consensus of industry experts. Last year, at a birds-of-a-feather session at RSA, CIS and Configuresoft developed a benchmark working group and with input from more than 200 virtualization and security experts from the commercial market, federal organizations, manufacturers and the software industry created the industry's first virtual machine security benchmark. CIS benchmarks and guidelines are unique in the industry in that they are created via broad consensus. This benchmark extends and enhances the hardening guidelines offered by the manufacturers by consolidating the expert opinion of the world's leading security professionals. http://www.compliancehome.com/news/GLBA/12578.html Wed, 09 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12574.html Bradford Networks, provider of comprehensive network access control (NAC) solutions, announced its new NAC Director Guest/Contractor Services (GCS) solution, which gives organizations the advanced security and operational tools required to manage guest, contractor, and strategic business partner network access. NAC Director GCS secures unmanaged laptops and PDAs, is easily added to existing networks, and provides a simple upgrade path to complete NAC capabilities. Organizations are under increasing pressure to provide network access to guests, strategic partners, and the contingent workforce temporary, freelance, and contract workers. In the last five years, the staffing industry has doubled and it will double again to a $200 billion industry by 2010, according to BusinessWeek. http://www.compliancehome.com/news/GLBA/12574.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12567.html Tizor Systems, provider of enterprise database auditing and protection solutions for the data center, today announced a technology alliance with ArcSight, a leading global provider of compliance and security management solutions. This partnership was formed to address a major need for integrated solutions that provide a comprehensive, enterprise-class approach to data security. The partnership, which will be promoted through ArcSight's EnterpriseView Partner Program, will help customers safeguard critical data assets, control data risk and meet a wide range of compliance requirements. The integration between Tizor Mantra and ArcSight ESM will allow for correlation, analysis, viewing and response to all incidents across the enterprise -- providing enterprises with a single, unified view into security and compliance incidents. http://www.compliancehome.com/news/GLBA/12567.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12566.html McAfee announced the formation of a new business unit focused on IT governance, risk and compliance. The new Risk and Compliance Business Unit will focus on driving innovation and extending McAfee's lead in security risk management. Led by George Kurtz, senior vice president and general manager at McAfee, the business unit will accelerate McAfee's leadership position in the rapidly growing governance, risk and compliance market. Government regulations and corporate policies demand that businesses prove their ability to comply with IT security policies designed to minimize risk. The Risk and Compliance Business Unit will provide McAfee with a greater focus on aggressively enhancing, integrating and adding content to its current risk and compliance offerings. The company will also concentrate efforts to include tighter cross-product integration with other McAfee products. http://www.compliancehome.com/news/GLBA/12566.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12565.html Voltage SecureData Grows Momentum With Major Integrators and Global 2000 Companies. Leading organizations standardize on advanced cryptographic solution to foil identity theft, speed compliance efforts, protect outsourced environments and avoid public data breach disclosures. http://www.compliancehome.com/news/GLBA/12565.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12564.html Secure Computing Announces New TrustedSource Alliance: Makes TrustedSource World-Class Reputation System Available To Partners. Members include Foundry, F5, Riverbed, and Webroot http://www.compliancehome.com/news/GLBA/12564.html Tue, 08 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12557.html Seagate Recovery Services announced the availability of three new data erasure solutions to enable companies to address privacy and data security issues when disposing of or recycling IT equipment. The Seagate Data Eraser products utilize a series of advanced algorithms to erase all data from a disk drive so that proprietary and sensitive information does not get into the wrong hands. For many industries, legal regulations, such as the Gramm-Leach-Bliley Act and the Health Insurance Portability and Accountability Act (HIPAA), govern the handling of proprietary, sensitive or personal information. With personal and corporate data increasing at exponential rates and more sensitive information located on local PCs or notebook hard drives, organizations need to properly dispose of data so that they do not expose themselves to potential legal liability or in some cases, possible criminal prosecution. http://www.compliancehome.com/news/GLBA/12557.html Mon, 07 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12554.html Finjan has released version 9.0 of its Vital Security Web appliances utilizing patented real-time content inspection technologies. Finjans award-winning appliances prevent Crimeware and malicious Web 2.0 content from infiltrating corporate networks and stealing business data. By inspecting inbound and outbound web traffic, malicious content is prevented in real time, also when hiding in SSL traffic. Vital Security version 9.0 introduces a new active real-time inspection technology from Finjan research lab. With this new version, organizations are equipped with an integrated dashboard that provides real-time information on the systems performance and security risk level. It uses an extensive set of graphs and views for quick and accurate insight. Security policies are managed quickly and easily with Finjans easy to use security policy decision-making system which includes a single-click rules refinement. http://www.compliancehome.com/news/GLBA/12554.html Mon, 07 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12553.html WinMagic announced that SecureDoc data protection software now supports UPEK fingerprint authentication. The companies' integrated solution is being demonstrated - for the first time - at the RSA Conference 2008. Enterprise businesses and government organizations face significant risks and penalties when laptops or portable storage media, containing valuable data assets or personal identifiable information (PII), go missing. SecureDoc's comprehensive end point data protection suite safeguards proprietary information and PII stored on mobile computers and portable media. With added support for UPEK fingerprint authentication, SecureDoc raises the stakes for both security and end user convenience, while reducing IT support costs. http://www.compliancehome.com/news/GLBA/12553.html Mon, 07 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12551.html Tizor Systems, a leading provider of enterprise database auditing and protection solutions for the data center, today announced a technology alliance with ArcSight, a leading global provider of compliance and security management solutions. This partnership was formed to address a major need for integrated solutions that provide a comprehensive, enterprise-class approach to data security. http://www.compliancehome.com/news/GLBA/12551.html Sun, 06 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12544.html Secure Elements has announced the company has been awarded a government-wide contract to provide the C5 Compliance Platform to all 27 Scorecard reporting agencies. Under the terms of the GSA FDCC contract, Secure Elements will provide, through its reseller partner FedResults, licenses and focused FDCC training to support OMB reporting requirements. The C5 Compliance Platform is the leading solution across the federal markets, and is the first SCAP validated solution for FDCC scanning of both Microsoft XP and Vista operating systems, To improve information security and reduce overall IT operating costs, the Office of Management and Budget (OMB) issued a policy last year requiring agencies using or acquiring Windows XP and Vista to adopt the Federal Desktop Core Configuration by February 1, 2008 (OMB Memorandum M-07-11 of March 22, 2007). This policy is consistent with the Federal Information Security Management Act of 2002, which requires agencies to continuously monitor and ensure comp http://www.compliancehome.com/news/GLBA/12544.html Thu, 03 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12527.html Configuresoft, announced that Convergys has selected Configuresoft's Enterprise Configuration Manager (ECM) to help manage and maintain compliance with multiple regulatory and industry standards including PCI DSS (Payment Card Industry Data Security Standard). Convergys is a global leader in relationship management with more than half of the Fortune 50 companies as its clients. Convergys selected ECM for its scalability, performance, rapid and granular data collection of IT assets, industry leading compliance content and templates, and enterprise remediation capabilities. http://www.compliancehome.com/news/GLBA/12527.html Wed, 02 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12521.html izor Systems, provider of enterprise database auditing and protection solutions, announced Mantra version 5.9 with advanced features for usability, scalability and compliance coverage. New features include automated policy creation for faster time to deployment; advanced analytics for mitigating data risk in real-time; and an enhanced user interface for the most intuitive, easy to use solution for business, compliance and technical users. Mantra 5.9 installs and deploys faster than other solutions and policies are easier to generate and maintain, contributing to a lower total cost of ownership. With Mantras compliance templates and Policy Wizard, companies can rapidly address database security, internal data governance and a wide range of external compliance requirements and industry standards such as SOX, GLBA, FFIEC and PCI. http://www.compliancehome.com/news/GLBA/12521.html Tue, 01 Apr 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12516.html Peak 10, an independent data center operator and managed services provider has added Secure Harbor Data Vaulting to its growing and diverse customer portfolio. Secure Harbor, a provider of data protection software, will receive world-class data center services out of Peak 10s state-of-the-art Atlanta facility. Our clients expect a high level of support and security for their mission critical data, said Marc Gray, chief executive officer of Secure Harbor Data Vaulting. We partnered with Peak 10 so that our customers applications are well protected and available around the clock. Peak 10s impeccable support and services have enhanced our business model and added depth to our technology offerings. http://www.compliancehome.com/news/GLBA/12516.html Mon, 31 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12509.html Sixty-eight percent of employees admit to bypassing their employers information security controls in order to do their jobs, according to new research from IT Governance Limited. This finding suggests that, even in some of the most sophisticated and security-conscious organisations, managers are failing to understand the correct balance between the confidentiality and availability of information. By implementing the wrong policies and procedures, they are potentially putting their organisations at risk and may be undermining the legitimacy of information security in employees eyes. IT Governance Limited is the one-stop-shop for books, tools, training and consultancy on Governance, Risk and Compliance. In February 2008, it polled 130 technology and compliance professionals on issues concerning the UK Data Protection Act (DPA). The respondents included some of the best informed professionals in this area, as evidenced by the high proportion of organisations with independently certifi http://www.compliancehome.com/news/GLBA/12509.html Wed, 26 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12492.html Achiever Plus was first released in 1994 and has now evolved into an integrated Governance Risk & Compliance management software solution, capable of meeting multiple corporate governance, risk management and compliance demands across a diverse range of industry sectors. For the C Level Executive: Easy to use and understand user interface allows all the compliance information needed to make decisions and be aware of to be displayed on your desktop in real time in the web browser. Also, additional expense for software, hardware, or technical training is not necessary. Achiever Plus .NET is utilizing the world's most widely accepted framework and technology issued or sanctioned by Microsoft. http://www.compliancehome.com/news/GLBA/12492.html Tue, 25 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12484.html Amadeus International announced the availability of version 7.3 of its flagship product, eQCM.The release of Version 7.3 is consistent with Amadeus's commitment to provide a comprehensive business process management solution for highly regulated companies. Coordinating all Governance, Risk, Compliance (GRC) and quality management activities via a single robust and flexible system, the solution streamlines all documents, communications, information flows, and corporate business processes throughout a seamless environment. Version 7.3 builds upon the traditional strengths for which Amadeus is renowned - usability, flexibility, intuitiveness, reliability - and extends those characteristics to the following new functionalities and improvements to significantly increase operational efficiency and usability. http://www.compliancehome.com/news/GLBA/12484.html Tue, 25 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12482.html Complinet, provider of web-based dynamic compliance solutions to the financial services industry, has teamed up with Steven Lofchie, partner at the law firm of Cadwalader, Wickersham & Taft LLP and the author of Lofchies Guide To Broker-Dealer Regulation, to deliver Lofchies Procedure Manuals. These are innovative compliance and supervisory procedure manuals that have been produced under the direction of Mr. Lofchie to address the needs of financial firms for procedures that are industry-standardized, comprehensive, and straightforward and that will be maintained so that they are never out of date. Stephen Lofchie is a recognized expert in compliance procedures and regulations. His Guide to Broker-Dealer Regulation, published in 2000 and updated in electronic form on Complinet, has become a central text for regulatory guidance amongst financial services firms of all sizes. http://www.compliancehome.com/news/GLBA/12482.html Thu, 20 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12458.html LogLogic announced new straightforward appliances architected and priced specifically for the enterprise mid-market (annual revenues between $400 million and $1 billion). Without compromising the features and functionality that have made LogLogic the log management leader among the Fortune 500, these new log management appliances provide comprehensive log data compliance mandate assurance while making it easy for mid-market systems administrators to install, configure, operate and maintain them. Compliance mandates - including the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley (SOX) - now require companies to track, manage, and report on their log data in order to comply with regulations and promote internal security and availability. http://www.compliancehome.com/news/GLBA/12458.html Wed, 19 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12451.html Network Frontiers has released Q1 2008 Unified Compliance Framework (UCF), the first independent database to simplify IT compliance. This latest version of the UCF harmonizes cross platform configuration management controls into a single set of harmonized controls, furthering UCF as the standard approach to integrated compliance. UCF acts as the cornerstone of IT compliance, mapping hundreds of regulations, including PCI-DSS (Payment Card), Sarbanes-Oxley, HIPAA, CobiT, and NIST, into a master hierarchal framework. Our approach is unique: only the UCF harmonizes IT controls from over 400 international regulatory requirements, standards, and guidelines from both technical and legal perspectives, stated Dorian Cougias, CTO of Network Frontiers. Rather than testing and asserting compliance for each individual regulation, IT organizations use the UCF to save an incredible amount of time and money by distilling compliance requirements to their essence and asserting compliance across multipl http://www.compliancehome.com/news/GLBA/12451.html Tue, 18 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12442.html Configuresoft launched Configuresoft University, a series of educational webinars, podcasts and events addressing the most pressing IT issues facing the industry. Configuresoft University, sponsored by Configuresoft's Center for Policy and Compliance (CP&C), kicks off this week with two Webinars addressing PCI Compliance and Virtualization Management and Security. Configuresoft's Center for Policy & Compliance (CP&C) is a team of security and compliance experts that conduct much of the same research and analysis that is required within any IT organization. CP&C sifts through the overabundance of security and compliance information and develops and maintains best practices and detailed technical controls to speed compliance for a variety of regulatory and operational standards, ranging from PCI, IS017799/27001, COBIT and NIST to GLBA, HIPAA and Sarbanes-Oxley. http://www.compliancehome.com/news/GLBA/12442.html Tue, 18 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12440.html Tizor Systems, the leading provider of enterprise data auditing and protection solutions for the data center, today announced that it has joined forces with BMC Software, a leading global provider of enterprise management solutions, through BMC Softwares Technology Alliance Program (TAP). http://www.compliancehome.com/news/GLBA/12440.html Mon, 17 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12433.html Lancope, the provider of the StealthWatch System, the most widely used Network Behavior Analysis (NBA) and response solution, announced that BlueCross BlueShield of Tennessee is using StealthWatch to strengthen information security and improve overall network management. BlueCross BlueShield of Tennessee relies on the StealthWatch System to monitor its entire network for potential security threats. In addition, StealthWatch helps the health plan provider diagnose latency and availability issues on its network. StealthWatch also aids regulatory compliance efforts for BlueCross BlueShield of Tennessee by providing detailed insight into network behavior and user activity. http://www.compliancehome.com/news/GLBA/12433.html Thu, 13 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12420.html Document lifecycle management company Recall has opened a full-service secure document and electronic media destruction facility in Baton Rouge to accommodate the regions sensitive information security needs. With this new facility, Recall can offer its customers collection and off-site destruction of sensitive documents and data storage media, as well as destruction of items with high intrinsic value, such as uniforms and defective merchandise. In North America, businesses discard 22 tons of paper waste each hour, and research shows that two-thirds of stolen corporate information is taken from a companys own dumpsters. Louisianas energy, finance, legal, and medical industries all generate an abundance of sensitive corporate and personal consumer information. Safeguarding information and personal privacy through secure destruction is not only a prudent business practice, but may help avoid punitive regulatory action and damage to brand reputation. Recalls certified secure destructi http://www.compliancehome.com/news/GLBA/12420.html Thu, 13 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12417.html Intelliden announced the release of Policy Based Compliance Management 2.0 (PBCM 2.0), the latest version of its total network compliance solution that automatically defines and manages network policies to meet regulatory, operational and industry compliance mandates, in addition to managing and resolving configuration-related security vulnerabilities in real-time. Designed to give network-driven companies greater network control, management and scalability, PBCM 2.0 boasts new and enhanced functionality to help lower the cost of network compliance and audits, accelerate discovery and remediation of configuration-related vulnerabilities and ensure the highest degree of network availability and business continuity. It also combines automated compliance with intelligent remediation, unmatched usability, and support for an unlimited number of policies to meet the needs of the largest and most complex networks. http://www.compliancehome.com/news/GLBA/12417.html Wed, 12 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12412.html Idera, provider of management and administration solutions for Microsoft SQL Server databases, announced version 2.0 of SQLsecure, an advanced SQL Server security auditing solution that identifies and analyzes database security risks. SQLsecure 2.0 extends its comprehensive set of analyses to include Windows operating system components and adds built-in policies to measure compliance against data security regulations such as Sarbanes-Oxley, PCI DSS, GLBA, HIPPA, BASEL II and The Patriot Act. As many companies are discovering, their biggest data security threat is not external hackers, but internal users. According to the 2007 CSI Computer Crime and Security Survey, 65% of companies who experienced a security incident reported losses due to insider activity. With the complex interaction of security settings and user access controls within SQL Server databases, the Windows operating system, file systems, and more, properly configuring and managing SQL Server security can be a daunting ta http://www.compliancehome.com/news/GLBA/12412.html Tue, 11 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12406.html Idera, provider of management and administration solutions for Microsoft SQL Server databases, released version 2.0 of SQLsecure, an advanced SQL Server security auditing solution that identifies and analyzes database security risks. SQLsecure 2.0 extends its comprehensive set of analyses to include Windows operating system components and adds built-in policies to measure compliance against data security regulations such as Sarbanes-Oxley, PCI DSS, GLBA, HIPPA, BASEL II and The Patriot Act. As many companies are discovering, their biggest data security threat is not external hackers, but internal users. According to the 2007 CSI Computer Crime and Security Survey, 65% of companies who experienced a security incident reported losses due to insider activity. With the complex interaction of security settings and user access controls within SQL Server databases, the Windows operating system, file systems, and more, properly configuring and managing SQL Server security can be a daunting tas http://www.compliancehome.com/news/GLBA/12406.html Tue, 11 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12402.html Woodside, Australia's largest publicly traded oil and gas exploration and production company, is deploying the Sourcefire 3D System to improve its global network security with increased network visibility and proactive threat protection. The Sourcefire 3D System provides Woodside with a combination of Network Behavior Analysis (NBA) and leading-edge IPS capabilities that allow the company to safeguard its assets across four continents. Sourcefire RNAs real-time visibility enables Woodside to easily identify new systems, vulnerabilities and policy violations throughout its worldwide network without impacting network performance. The company then uses this information to proactively enforce policies and tune its security devices for increased accuracy and protection. In addition, Sourcefire 3Ds innovative Compliance Whitelist capability enables Woodside to automate many of its security and compliance activities, so that it can easily define acceptable and unacceptable network activity http://www.compliancehome.com/news/GLBA/12402.html Tue, 11 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12401.html Kaplan Financial Compliance, a provider of services and technology solutions for the insurance and securities industries to help manage the producer/representative on-boarding process and career cycle, has introduced an innovative Just in Time appointment processing capability in its CMS G2(TM) compliance solution. The new automated feature is designed to cut down on unnecessary state appointment processing fees paid by carriers. http://www.compliancehome.com/news/GLBA/12401.html Fri, 07 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12388.html TerraNua, provider of risk and compliance solutions to the U.S. wealth management market, announced that Artha Capital Management, a Stamford, CT-based alternative investment firm, has signed a contract to utilize the firm's proprietary software solution, MyComplianceOffice for its compliance reporting needs. A strong culture of compliance and established procedures are more prominent and critical for hedge funds in today's regulatory environment, said Adam Jaffe, chief compliance officer of Artha Capital Management. MyComplianceOffice provides us with a comprehensive, flexible, automated solution that will allow us to effectively monitor and, more importantly, document our compliance activities so that we can avoid any potential hazards. Having the MyCompliance Dashboard is an invaluable tool that allows me to visualize the company's adherence to its compliance mandates. http://www.compliancehome.com/news/GLBA/12388.html Thu, 06 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12385.html FaceTime Communications, provider of solutions that control greynets and manage unified communications (UC) in the enterprise, today announced availability of an enhanced version of IMAuditor. It enables enterprises to benefit from their IBM Lotus Sametime and Microsoft Office Communications Server deployments with a highly available, fault-tolerant and enhanced security and compliance infrastructure that includes support for new modalities like VoIP, video and Web conferencing. FaceTime has seen growing concern among large organizations over the past several weeks, examining their ability to log, archive and retrieve instant messages. http://www.compliancehome.com/news/GLBA/12385.html Thu, 06 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12383.html Secure Computing Corporation has released SecurityReporter, a new security event management (SEM) reporting solution for both Sidewinder and SnapGear appliances. SecurityReporter software delivers central monitoring, correlated alerting and reporting of Sidewinder and SnapGear audit streams to identify real security threats from meaningless noise. It provides immediate action points to keep the enterprise or small- to mid-size business safer, and the graphically rich tool strengthens overall security, provides evidence of regulatory compliance, and proves the effectiveness and value of IT's security investment to management. Today, IT administrators face a challenge of getting actionable information from the vast audit and log data associated with the many layers of security systems now required to keep corporate assets safe. As hacker and malware threats increase exponentially, they become more complicated to manage. And, with increasing regulatory compliance obligations, administrato http://www.compliancehome.com/news/GLBA/12383.html Thu, 06 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12380.html Files2Links, provider of enterprise file transfer solutions, announced the availability of the F2L 1000 Series Appliance version 2.0 and F2L OnDemand Service version 2.0. The new solutions help businesses of all sizes transfer large files with the unique combination of ease-of-use, innovation, and affordability. Deployed on premise, the F2L 1000 Series Appliance is an integrated hardware and software solution for sending, receiving, and sharing large files. It provides an alternative to email and FTP for sending large files to business partners and customers. The F2L 1000 Series Appliance is installed in less than 30 minutes, integrates with Microsoft Active Directory, and is painless to administer. The solution maintains an auditable log of every transaction and secures confidential information during transit ensuring compliance with industry regulations such as HIPAA, GLBA, and Sarbanes-Oxley. http://www.compliancehome.com/news/GLBA/12380.html Wed, 05 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12377.html Websense introduced new messaging security solutions, including a new hybrid hosted and on-premise e-mail security solution, that give businesses broader protection from e-mail security threats and expanded regulatory and policy compliance capabilities. Websense has delivered on its promise to customers and the industry by investing in messaging security products acquired from SurfControl, said Jay Wessel, vice president of technology for the Boston Celtics. We chose Websense Email Security because of its phenomenal e-mail security protection and its granular policy enforcement capabilities that clearly outshine other solutions on the market. Websense provides essential protection to our organization. http://www.compliancehome.com/news/GLBA/12377.html Tue, 04 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12367.html Secure Computing Corporation announced the availability of SecurityReporter, a new security event management (SEM) reporting solution for both Sidewinder and SnapGear appliances. SecurityReporter software delivers central monitoring, correlated alerting and reporting of Sidewinder and SnapGear audit streams to identify real security threats from meaningless noise. It provides immediate action points to keep the enterprise or small- to mid-size business safer, and the graphically rich tool strengthens overall security, provides evidence of regulatory compliance, and proves the effectiveness and value of IT's security investment to management. Today, IT administrators face a challenge of getting actionable information from the vast audit and log data associated with the many layers of security systems now required to keep corporate assets safe. As hacker and malware threats increase exponentially, they become more complicated to manage. And, with increasing regulatory compliance obligati http://www.compliancehome.com/news/GLBA/12367.html Mon, 03 Mar 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12362.html Single monitoring and reporting solution for enterprise and branch office firewalls strengthens security, provides regulatory compliance and demonstrates ROI http://www.compliancehome.com/news/GLBA/12362.html Thu, 28 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12345.html WinMagicR Data Security, the innovative leader in endpoint security announced that it has been awarded a National Master Standing Offer (NMSO) by Public Works and Government Services Canada (PWGSC). This award makes it simple for resellers to provide Canadian government departments and agencies with WinMagic's SecureDoc full-disk encryption to ensure all data on desktops, laptops, PDAs, and removable media such as USB drives, thumb drives, DVDs, and CDs is protected. Any Canadian government agency or department simply has to place an order to purchase SecureDoc at a guaranteed price. Elytra Enterprises is pleased to be the designated point of contact for federal departments interested in purchasing this 'made-in-Canada' advanced security solution, said Randy Sutton, President, Elytra Enterprises. The NMSO award will simplify the purchasing process for federal departments which will certainly make it easier for resellers to sell SecureDoc to the Canadian Government, Sutton continued. El http://www.compliancehome.com/news/GLBA/12345.html Thu, 21 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12304.html Nvolve has seen a major increase in sales due to the release of the Nvolve Response - Training and Compliance Management Made Easy solution to the Medical Devices and Pharmaceutical market. Nvolves expertise and management software solution helps organisations meet their regulatory requirements when it comes to the management and reporting of training activities. These tasks are normally essential and/or critical for compliance purposes and management reporting, and are in most cases extremely time consuming, highly costly and distracting from core business activities. http://www.compliancehome.com/news/GLBA/12304.html Wed, 20 Feb 2008 00:00:00 CST http://www.compliancehome.com/news/GLBA/12300.html WinMagicR Data Security, pioneer in endpoint security, announced that it has partnered with MXI SecurityT, the leader in managed portable security solutions, to integrate the companies' endpoint security solutions. WinMagic and MXI Security will introduce support for MXI Security Stealth MXPT and Outbacker MXPT portable security devices within WinMagic's SecureDocT security suite, to provide customers with greater choice and increased efficiencies from consolidated management. MXI Security's award-winning Stealth MXP and Outbacker MXP are perfect complements to WinMagic's proven encryption solutions for laptops, PDAs, removable media and data files, said Lawrence Reusing, Chief Executive Officer of MXI Security. Our integrated solution will provide security-conscious customers with many more choices for protecting sensitive mobile data, and the confidence of knowing that each option they choose to deploy delivers robust, FIPS-approved security. http://www.compliancehome.com/news/GLBA/12300.html