Your search for compliance returned 805 results.

Compliance is more of a concern for IT professional than worms and viruses, according to a new survey. Cisco Systems is preparing to acquire privately-held Perfigo, a developer of packaged network access control solutions that provide endpoint policy analysis, compliance, and access enforcement capabilities. Brian Milas argues that identity mapping offers cost and security benefits, while meeting strict regulations The deadline for compliance with Section 404 of the Sarbanes-Oxley requirements (SOX) will come into force at the close of this fiscal year. Companies disclosing their results must implement an internal control structure to assure the accuracy of financial reports, evaluate the control structure periodically and make sure that controls are tested at least annually by an independent audit firm. Money Mart, a money services firm with 250 locations in the US, has rolled out a browser-based real-time monitoring and centralized event management application in a bid to maximize network security and help meet regulatory compliance laws. Credit card processing company CardSystems is banking on an independent assessment validating its compliance with the Payment Card Industry (PCI) data security standard to convince former clients to take it back, but so far none are biting. Eaton Vance, a Boston-based financial-services firm, has deployed Enterasys' Secure Networks infrastructure to ensure data protection, network access control, and Sarbanes-Oxley compliance.

Recently acquired by NetIQ, VigilEnt Policy Center provides a policy management tool that ensures users are aware of their responsibilities while providing solid policy control across the company network.

This is a corporate-level security solution and requires a user database to allow you to import users so that user groups can be established. The policies can then be set for these groups, with users being required to answer questions to establish understanding and compliance. Logs are kept to view user input and also to define problem areas. This performance-related system means that users know how to use company data and they learn what is required of them, while the administrator can see statistics and reports. Users not complying can be identified and an email can be sent to them to remind them of its significance. This ensures that not only do your employees comply with your policies, but your company can prove compliance with the regulators and specifically with ISO 17799.

You can stipulate certain user rights to allow for policies to be reviewed prior to publication and distribution. But of course you may use pre-written policies, amend them or create your own, as required by your own particular corporate needs.

The volume of internet traffic generated by an ever-increasing number of applications, including e-mail, Instant Messaging (IM), web services, Voice over IP (VoIP), and other network transactions is growing unabated. Together with these applications has come an associated proliferation in the number of user identities within enterprises – e-mail addresses, IM handles, VoIP telephone numbers, all of which need to be managed. Concurrently, companies are under increasing scrutiny to adhere to government regulations and other compliance requirements to protect the privacy of customers, employees, and their personal data. META and SecurePipe have joined forces to offer managed security and compliance. As the HIPAA privacy compliance deadline passes, Jon Bogen highlights the top action points for the new security rules Compliance with the Sarbanes-Oxley Act is forcing companies to impose stricter policies, says Chris Mullins UK businesses are struggling to cope with the regulations governing IT in the workplace. Almost 100 per cent of US firms believe they will pass the Sarbanes Oxley test. By now, it's obvious that the economy and the technology sector in particular, are in the midst of a significant downturn. But hand-wringing over ever-dropping stock prices, new rounds of lay-offs and lowered earnings do not constitute a strategy. James R. Wade believes a formalized approach to infosecurity can support corporate governance initiatives About 30 percent of some 100 IT executives stated that control of access to critical infrastructure is the most important improvement to achieve for their IT operations.

Sygate Technologies says that its policy enforcement ensures remote connections over a VPN are not exposed to hijacking of data. It ensures remote authentication is only made if the user conforms to the policy set in force. This makes a lot of sense.

What Sygate Secure Enterprise provides is the ability to maintain certain rules, even for remote users. These include whether their firewall is current and configured correctly, if the remote user's anti-virus is up to corporate specifications and, equally important, up to date. These are just a few example of areas where compliance may be required.

The basis of any policy management tool is the ability to manage its users and to recognize potential problem areas. Some do this without agents and others prefer to manage policy enforcement with agents residing on both workstations and servers. This is the case for Symantec Enterprise Security Manager, which uses the agents as its means of communication between its networked machines, enabling timely updates and compliance reports.

Symantec Enterprise Security Manager has already established itself in the policy management solutions market. This particular solution ensures that policies are intrinsically complied with throughout the organization, as well as maintaining system security through recognizing changes that could affect the security of the network.

Using control information files (CIF) the product can be managed from a central console, but in a large organization you may require more than one. Agents provide the means for the information to be collected across a distributed network to ensure updates are accomplished at regular intervals. Changes can be identified and the appropriate action taken, while logs and reports may be generated for further analysis.

Unlike the other products in this Group Test Web Inspector is neither system policy management or email policy management, but in fact an internet compliance tool that uses policy to set its users' boundaries. Suitable as a single installation for the smaller enterprise, this solution easily scales up to a distributed deployment over a large network.

Policy starts with access control, ensuring that users only have the rights assigned by the administrator in line with your corporate policy. Whether you choose to assign the same rights across the network or drill down your policy into user groups, sites, or individual users or workstations, is your choice. Policies can be created to suit your needs and ensure that only the web pages that your company deems necessary are viewed within work hours, allowing for the organization to permit safe surfing on non-business sites at stipulated times.