ComplianceHome: GLBA News
ComplianceHome is one of the Web's largest library of resources for compliance management of HIPAA, SOX, FISMA, GLBA, FDA, COOP & COG, FFIEC, Basel II, OSHA and ISO 27002/17799. Visit our directories which are the best source on White papers, related news articles, resources on the web, training, webinars, conferences, rules & regulation overview, ask the expert, job and search on vendors, solutions & products.

• C2C Development Extends Email Capacity Management Capabilities
  C2C, supplier of enterprise email archiving software, announced a connector for its solution, Archive One, to NetIQ AppManager. As a result, AppManager customers can now move email off the Exchange server and archive it via Archive One to improve productivity around email lifecycle management while lowering overall system support costs. This new connector enables organizations to consolidate information from multiple messaging applications and servers. It links workflow procedures and individual tasks together with Archive One email archiving functions in a way that immediately reflects environmental changes caused by adjacent processes.
• Aberdeen Group Report: Automated Compliance Platforms Emerging as Key Enablers to Effective Security Governance and Risk Management
  Companies that have developed superior capabilities in security governance and risk management have demonstrated an ability to improve the productivity of their existing IT resources, make faster decisions, optimize their business processes, and improve the visibility of the compliance function across organizational and geographic silos. These findings are among the highlights of Security Governance and Risk Management: The Rewards of Doing the Right Things, and Doing Things Right, a comprehensive research report released today by Aberdeen Group of Boston, a Harte-Hanks company. Polivec, Inc. of Mountain View, provider of industrys first policy-driven Governance, Risk and Compliance (GRC) platform, co-sponsored the report.
• Passlogix Unveils New Version of v-GO Shared Accounts Manager
  Passlogix announced v-GO Shared Accounts Manager (v-GO SAM), a new module in its v-GO Sign-On Platform that offers an industry-first approach to managing access to privileged accounts. v-GO SAM leverages v GOs enterprise single sign-on capabilities and its interoperability with identity management and strong authentication systems to close the security gaps associated with shared credentials, offer new capabilities that aid regulatory compliance, and eliminate the need for a dedicated vault system for shared account management.
• Taneja Group Identifies WysDM 4 as the "Ideal Platform for Data Protection Assurance"
  WysDM Software, provider of advanced data protection management (DPM) solutions, announced today that leading industry analyst firm the Taneja Group has identified WysDM 4 as the ideal platform for data protection assurance in a recent Solution Profile report titled Is your data protection compliant? Delivering best practices with WysDM 4. The report reviews the operational issues created by compliance-driven data protection assurance requirements and highlights how the WysDM 4 solution's capabilities can satisfy an enterprise's data protection assurance needs. The report is available at http://wysdm.com/WysDM4_TanejaGroupSolutionProfile.html. According to Arun Taneja, founder and consulting analyst, Taneja Group, WysDM goes beyond pure compliance, giving an organization the right tools to comprehensively manage every aspect of data protection. Using WysDM, an organization can proactively manage data protection practices, and guarantee service levels and capabilities.
• SolarWinds' New Version of Network Change and Configuration Management SolutionProvides Enhanced Compliance, Security and Administration Capabilities
  SolarWinds announced the availability of Cirrus Configuration Manager (Cirrus) 4.0, a comprehensive network change and configuration management solution providing automation of configuration backups, real-time change detection, and policy management. New features in Cirrus 4.0 provide unparalleled enterprise-level capabilities in an affordable solution. Through new compliance, security and administration features such as role-based access control and permissions, user activity tracking, and device login credentials, network engineers can leverage Cirrus to not only automate time-consuming configuration-related tasks, but also adhere to compliance mandates such as PCI, SOX, HIPAA and other regulatory standards.
• Iatric Systems to Utilize Data Centers Robust Network and Disaster Recovery Solutions
  Peak 10, an independent data center operator and managed services provider, announced that Iatric Systems, software solutions provider for the Meditech community, will be expanding its data center and managed services contract. Iatric, a longtime customer in Peak 10 Charlotte, will be utilizing Peak 10s world-class Atlanta facility for disaster recovery solutions and increased business continuity security. We have been very pleased with the services and support that Peak 10 has provided us with thus far, said Joel Berman, president of Iatric Systems. We were seeking the added assurance that our infrastructure was secure around the clock, and Peak 10s geographic diversity, private internal network, reliability and knowledgeable team in Charlotte and Atlanta were an ideal fit for our company.
• New Research Outlines Key Steps to Protect Sensitive Data
  The IT Policy Compliance Group announced the availability of its latest benchmark research report titled Core Competencies for Protecting Sensitive Data. The report, which incorporates responses from more than 450 organizations globally, concludes that only one in 10 organizations is in the enviable position of adequately protecting their sensitive data. The report also analyzes the variables between those companies that are leaders and laggards in the area of data protection, providing insight into best practices that can lead to better data protection, improved compliance and sustained competitive advantage. One of the most striking findings from the research is the correlation between the protection of sensitive data and regulatory compliance results: firms that excel at protecting sensitive data also perform well on regulatory compliance audits. Almost all (96 percent) of the organizations with the least loss of sensitive data are the exact same organizations with the fewest regula
• Trend Micro's First Data Leak Prevention Solution Launched
  Trend Micro announced Trend Micro LeakProof 3.0, the company's first data leak prevention solution. The latest version of LeakProof, obtained through the acquisition of Provilla, Inc., educates and interacts with endpoint users so that data leaks and security threats are prevented. A majority of data leaks happen from within, either by accident or on purpose by valid users who have access to the data within a corporate network. A company's greatest asset their employees can also be their greatest security liability. The new interactive endpoint alerts of Trend Micro LeakProof 3.0 enable IT managers to define content-sensitive dialog boxes that appear directly onto an employee's computer screen. These alert boxes educate employees on the appropriate handling of confidential information, raise awareness of security issues and enlist their support in preventing data from walking out of the door.
• HIPAA Compliant Echoworx Secure Mail Gateway Launched
  Echoworx Corporation, provider of security software products for digital communications, announced the global availability of Echoworx Secure Mail Gateway. Thisproduct compliments the Echoworx encryption portfolio by extending the suiteto include a gateway solution that can be easily deployed with policymanagement and anti-spam and anti-virus content filtering solutions, givingenterprises a transparent method to secure messaging. A data loss or leak can have a tremendous impact on an organization's P&L,competitive standing and brand damage to their reputation. A data lossprevention strategy is just one issue driving companies to enforce encryptionthrough content scanning solutions, such as policy management, to safeguardemail communications that include sensitive data such as customer and employeeand intellectual property.
• WysDM to Demonstrate New DPM Solution for Enhanced Compliance and Capacity Planning During Storage Decisions Conference
  WysDM Software, provider of advanced data protection management (DPM) solutions, announced that it will exhibit its new WysDM 4 DPM platform during the Storage Decisions conference in San Francisco, December 4-6, 2007, at the Hilton San Francisco. Including major enhancements to its WysDM for Backups and WysDM for Fileservers products, WysDM 4 provides businesses with a full picture of their data protection risk while reducing the time to provision storage and enhancing overall storage utilization. The newly enhanced platform also provides significant advances in compliance and risk