Software provides online compliance status of audited assets.
Press Release Summary:
With externally validated IT-audit content, Brabeion Compliance Manager (BCM) provides policy lifecycle management and compliance monitoring and reporting across global, heterogeneous network environments. It provides graphical reports of compliance levels across any subset of company. Web-based dashboard enables organizations to map, measure, and monitor compliance with SOX 404, HIPAA, FISMA, GLBA, PCI, CA SB1386, and ISO 17799 regulations.
Original Press Release:
New Brabeion Compliance Manager Cuts the Cost of Regulatory Compliance by up to 60 Percent
Providing Online Compliance Status of All Audited Assets, BCM Enables Organizations to Take Control of the Audit
MCLEAN, Va., Oct. 24 // -- Brabeion Software, a leader in IT security risk and compliance management software, today announced the availability of Brabeion Compliance Manager, the first platform to help organizations reduce the cost and complexity of regulatory compliance while enabling them to monitor and measure compliance against multiple regulations and across global, heterogeneous network environments. Brabeion Compliance Manager (BCM) utilizes a customer's existing vulnerability management and change and configuration management systems to collect, compare and report their actual compliance status at any given time. BCM monitors and measures compliance against the organization's policy baseline, providing comprehensive reporting of what the organization must do to meet regulations and remediate gaps. By covering all assets critical to regulatory compliance -- not only technology, but also people and processes -- BCM helps organizations reduce their costs of regulatory compliance by up to 60 percent.
Brabeion Compliance Manager is a compliance dashboard optimized for organizations that face an almost continuous audit cycle, whether from Sarbanes-Oxley, industry-specific, or business partner audits. Since each type of audit has different systems, requirements and timeframes, the result can be a costly audit schedule with considerable risk of failure. Brabeion Compliance Manager works together with Brabeion Compliance Center (BCC) to connect policy and compliance state for information assets. Embedded within BCC is externally validated IT-audit content, and, as a result, organizations can tie their compliance state directly to documented, audit-proven policies and controls, customized for their business environment, or use their own internal policies and controls as their benchmark. In tandem with BCC, BCM presents the data in the proper context for any type of audit. BCM provides continuous attestation, reducing audit preparation time typically to one day.
"The multiple audits that today's regulated enterprise faces are each unique and require an ongoing commitment of valuable resources," said Jay White, Global Information Protection Architect, Chevron Corporation. "Brabeion Compliance Manager, in tandem with Brabeion Compliance Center, is a fully realized system for policy lifecycle management, compliance monitoring, and compliance reporting, essentially cutting the cost and cycle times for the audit process and enabling the company -- not the auditor -- to control the audit."
Enables Organizations to Take Control of the Audit, Reducing Risk
The compliance views within BCM provide graphical reporting of compliance levels across any subset of a company -- such as for the company's regional operations or for a single business unit. BCM's unique approach supports multiple facets of the compliance program. Security and compliance officers can drill into specific operational groups and get a clear picture of compliance levels across the enterprise. Internal and external auditors can examine specific controls and view the current status of specific assets and any required remediation efforts; IT personnel can utilize the compliance data to prioritize remediation efforts and improve service and incident response. Once compliance officers and auditors have reviewed the organization's technical platforms, they can review policy acceptance and acknowledgement evidence from employees managing those systems, as well as the individual operational processes and their compliance states reported by process owners.
Unique among compliance management platforms is BCM's comprehensive integration options, including adapters for leading vulnerability assessment technologies such as Symantec's ESM and NetIQ's VM, as well as embedded assessment technology primarily concerned with compliance remediation. These choices allow organizations to build upon their existing infrastructure or build a compliance assessment infrastructure using state-of-the-art compliance technology. As a result, BCM customers can reduce time to implement, leverage existing infrastructures, and know at a glance the compliance status of their IT assets and exactly what to do next to meet multiple audit and regulatory requirements. BCM will support more assessment technologies via integration adapters to be delivered on an ongoing basis.
"Most compliance management technologies are costly propositions -- not only to acquire, but also to implement and operate. Furthermore, when regulatory and legal compliance is explicitly managed, it means that people have less flexibility to do the job the way they want. However, when carefully planned, many regulatory response activities can be made significantly easier through the use of technology. Even more important, the reliability and documentation of many compliance tasks can be exponentially improved through automation," stated Gartner analyst Mark Nicolett in Hype Cycle for Compliance Technologies, 7-12-06.
"Brabeion has worked with over 300 companies of all sizes, and each has distinct compliance challenges to meet," said Julian Waits, President and CEO of Brabeion Software. "However, all share one goal -- to take control of compliance, thereby eliminating unknowns and reducing risk. Brabeion Compliance Manager is alone in enabling organizations to manage their compliance readiness so comprehensively that they bring the entire IT audit process within their own domain."
Together with Brabeion Compliance Center, Brabeion Compliance Manager enables organizations to map, measure and monitor an organization's compliance with regulations and control frameworks such as SOX 404, HIPAA, FISMA, GLBA, PCI, CA SB1386, 21 CFR Part 11, ISO 17799, NIST 800-53 COBIT, and others. The result is centralized policy lifecycle management -- and the first comprehensive audit platform to integrate an audit-proven content library with a content management system and with compliance management. With BCM, the enterprise is audit-ready, on-demand.
Brabeion Compliance Manager, a web-based application, is available now. For more information, go to www.brabeion.com or contact Brabeion at 703-752-9300.
About Brabeion Software
Brabeion Software is a critical component of an organization's strategy to develop a sustainable compliance program that achieves business goals while meeting the requirements of the most demanding auditors. With Brabeion's solutions, organizations can manage the complete compliance life cycle for information technology to mitigate IT risk more effectively, improve compliance reporting and metrics, and ease the compliance and audit burden. Brabeion Software is successfully deployed across vertical markets including manufacturing, finance, transportation, and oil & gas/energy. For more information, visit www.brabeion.com.
Source: Brabeion Software
Web site: www.brabeion.com/
