SecureData, a member of the JSE-listed ERP.com Group and the distributor for RSA Security products in Sub-Saharan Africa, today announced RSA Reporting & Compliance Manager, which provides centralised reporting capabilities to help customers using RSA ClearTrust Web access management software more easily comply with the information security requirements associated with regulations such as Sarbanes-Oxley, HIPAA and others.
RSA Reporting & Compliance Manager leverages the logging capabilities of RSA ClearTrust software to provide auditing and reporting benefits that enable organisations to report on both past and present access policies, as well as user behaviour.
RSA Reporting & Compliance Manager expands the suite of solutions and product features RSA Security offers to help businesses effectively leverage best practices for meeting regulatory requirements.
Regulations such as Sarbanes-Oxley and HIPAA ultimately require organisations to do what is "reasonable" - in other words, implement best practices. In this regard, organisations need better logging and reporting capabilities for investigating security incidents and for providing administrators and auditors with evidence of policy conformance or regulatory compliance.
With its built-in and customisable reports, RSA Reporting & Compliance Manager will provide visibility into the accuracy of user access rights and the activities of employees, customers and partners on corporate systems protected by RSA Security products. For example, RSA Reporting & Compliance Manager interprets log events generated by RSA ClearTrust software and provides consolidated, easy to customise and exportable reports that can help administrators easily answer complex "who, when, how and why" audit questions about user access and authorisation. In addition, administrators can easily create new reports. Built-in reports include:
* Policy reports showing who has access to what information and applications.
* Policy change reports showing how an access policy changed over time, including which administrators made the policy changes.
* Activity reports showing who accessed what and when.
* Intrusion reports showing unsuccessful attempts to gain access.
"Many regulations share common, fundamental requirements to verify access controls and monitor user activity. Organisations are now expected to prove that only authorised users have been granted access to protected information, that access rights are being update in a timely manner, and that the organisation has enforced proper separation of duties," commented Chris Christiansen, Program Vice-President, IDC's Security Products and Infrastructure Overview services.
"Effective and accurate logging and reporting on user access on a real-time basis will be a cornerstone of an effective compliance programme."
"With organisations facing a myriad of regulatory requirements, one major challenge is implementing reliable and easy to use logging and reporting capabilities that make sense of all the system level logs generated by an identity and access management infrastructure," added John Worrall, vice-president of worldwide marketing at RSA Security. "We developed RSA Reporting & Compliance Manager help address this challenge and to ensure that customers can continue to open up their systems to more users and do more business online, without compromising on security or creating auditing nightmares."
For further information, please contact Andrew Ochse at telephone (011) 257 8600; fax (011) 257 8699; e-mail andrewo@securedata.co.za.
Share
RSA Security Inc helps organisations confidently protect identities and information access. The company secures more than 15 million user identities, safeguards trillions of business transactions annually, and manages the confidentiality of data in tens of thousands of applications worldwide. RSA Security's portfolio of award-winning solutions, including identity and access management, secure mobile and remote access, secure enterprise access, secure transactions and consumer identity protection, sets the standard in the industry. Their strong reputation is built on a 20-year history of ingenuity, leadership and proven technologies, and their 17 000+ customers around the globe. Together with more than 1 000 technology and integration partners, RSA Security inspires confidence in everyone to experience the power and promise of the Internet.
SecureData
SecureData, an ERP.com company, is Africa's premier IT security solution provider. SecureData's solutions incorporate anti-virus and content security, network security, intrusion prevention software and network asset management. SecureData's comprehensive "Managed Security Services" include design, audit, implementation, vulnerability assessment, outsourcing and hosting. SecureData distributes, sells and supports category leading IT security products to the public, corporate and SME sectors throughout Africa as well as products and services to the SOHO and consumer markets through partnerships with ISPs.
As well as being the sole distributor in Sub-Saharan Africa for Trend Micro, SecureData is the African distributor for US-based TippingPoint Technologies and the southern African distributor for US-based Application Security, eEye, Rocket Software, RSA Security, St Bernard and Websense; and UK-based Centennial. For more information, visit SecureData at www.securedata.co.za.
ERP.com
ERP.com is a JSE-listed company focused on the implementation, integration and management of enterprise applications in an e-business environment. For more information, visit ERP.com at www.erpcom.co.za.
Editorial contacts