

	Testimonials & Case Studies

	Business Continuity

	Compliance Policy


	Frontpage

For IT executives the job is never done

Print Page

A growing number of industry and governmental regulations, many of which contain security requirements, have come to be part of every day work life.

In most cases, the regulations require responsibility from management to establish and maintain a sufficient and reliable internal control and audit structure, used for financial and regulatory reporting. Organisations must be able to provide an assessment of the effectiveness of the internal control structure and procedures to meet these requirements.

From a network security perspective a company needs to secure their IT environment by assessing, prioritising, and securing their systems from vulnerabilities in a repeatable, controlled manner.

Below is a list of common regulations:

Sarbanes-Oxley Act of 2002 impacts all US publicly traded firms, with regards to accurately reporting financial metrics, and establishing the appropriate safeguards to ensure safety and accuracy of the data.

ISO 17799 version 2 / BS7799 of 2000 requires processes to ensure that the security controls for a system are fully commensurate with its risks. This embraces the study of relevant threats, vulnerabilities, controls in place and of course potential impacts.

Gramm-Leach-Bliley Act (GLBA) of 1999 includes provisions to protect consumers' personal financial information held by financial institutions.

Basel II International Convergence of Capital Measurement and Capital Standards of 2004 impact the international banking industry.

Cardholder Information Security Program (CISP) of 2000 is required of all entities that store, process, or transmit Visa cardholder data.

Data Protection Act of 1998, which governs the processing of personal data in the United Kingdom.

Secunia has through our services developed an approach to address the challenges of compliance. This vulnerability management work-flow enables you to align Secunia's approach to network security to the real business risks facing your organization.

Secunia

Secunia assists companies in their vulnerability management process, including vulnerability assessment and security configuration baseline. Mitigation activities are prioritised based on severity of the vulnerability, the current threat environment and the business use of the vulnerable asset. We assist companies protecting and shielding vulnerable assets until a permanent solution is completed as well as identify the root cause for the vulnerability, enabling the company to eliminate the threat through changes in the network, server, and pc configuration policies.

Read how others have used our services / Read about Secunia's products

Want to learn about the solutions?

Secunia offers various solutions for managing vulnerabilities.



Try the Secunia solutions today!

Get access to a Secunia solution today.