The partnership between McAfee and Network Frontiers will enable large enterprises and heavily regulated industries such as utilities, healthcare, education, government, and finance to easily identify common control requirements across multiple regulations. Many organizations are unaware that there is currently a 70 percent or more commonality in regulation requirements. By identifying these commonalities, organizations can consolidate the time and IT investment required for compliance and audit activities - potentially realizing significant cost savings. This also enables businesses to leverage existing McAfee security technology investment and reduce policy processes into a unified plan to achieve and maintain continuous compliance across the enterprise.
"For the first time customers will be able to leverage their entire gamut of existing protection and security technologies for demonstrating compliance in a unified way," said George Kurtz, senior vice president and general manager of McAfee’s Risk and Compliance Business Unit. "In today’s fragmented security landscape, multiple vendors with niche product offerings claim to solve companies’ PCI challenges when they can only cover a piece of the puzzle. McAfee, along with its SIA partner ecosystem, will be able to deliver a unified compliance scorecard for best practices, regulations and standards worldwide, offering a far more complete IT GRC solution."
Network Frontiers’ United Compliance Framework (UCF) harmonizes IT controls from over 400 international regulatory requirements, standards and guidelines into a single set of straightforward requirements that clearly show the many points where global, state and industry regulations overlap. McAfee will utilize the UCF data framework to deliver a comprehensive worldwide compliance matrix of over 3,000 regulations applied across a complete range of security technologies and into a matrix tool specifically mapped to McAfee customers’ needs.
"By taking a full view of compliance and a broad look at security McAfee is clearly taking a proactive leadership position in the security technology space. And they’re making it easy for customers looking for both security and compliance solutions to satisfy both requirements," says Craig Isaacs, CEO of Network Frontiers.
Some of the most familiar regulations and guidelines harmonized by the UCF include: Sarbanes-Oxley Act (SOX), International Variants, Basel II, Gramm-Leach-Bliley, Payment Card Industry Data Security Standard (PCI DSS), EU Data Privacy Act, NASD Manual, HIPAA, TIPEDA, FERC Security Program, Uniform Electronic Transactions Act (UETA), FIPS 191, GAO Financial Audit Manual, IRS Revenue Procedure and Federal Rules of Civil Procedure. [April 20, 2009]
Send this IT news to a friend