Bsafe Launches Security Policy Compliance Manager
May 15, 2007 Alex Woodie
Bsafe Information Systems recently introduced a new Policy Compliance Manager product designed to help System i shops design, implement, enforce, and fix their security policies. The new module was delivered with Bsafe Enterprise Security version 5.5, which became available last month.
The new Policy Compliance Manager is designed to help i5/OS and OS/400 shops maintain the security of their IT assets by handling the full circle of security policy compliance. This includes everything from template-based policy generation and security term mapping to checking for compliance and running deviation reports to keep an enterprise secure.
The intended users of Bsafe’s new Policy Compliance Manager are the auditors who are tasked with ensuring that the IT systems of their clients are secure and conform to stated security policy, but who typically lack the deep technical skills to see this through because of the complex and esoteric language employed by the System i server.
Armed with the compliance manager, auditors will be able to double-check the work done by organizations’ security officers, which is a new IT requirement as a result of the separation of duty mandate put in place by Sarbanes-Oxley.
While auditors need a bit of technical skill to work with Bsafe’s new Policy Compliance Manager with the first release, a wizard-driven process planned for the next release should excuse the auditor from possessing any technical knowledge of the System i.
The software can help organizations create their own security policy, but it’s primarily intended for organizations that already have an existing security policy and need an easy way to report on it and follow-up with fixes to any problems the reports turn up, says Shimon Bouganim, founder and chief executive officer of BSafe Information Systems, which is based in Herzliya, Israel, and has its American headquarters in Englewood Cliffs, New Jersey.
The compliance manager is an optional add-on to Bsafe Enterprise Security software for System i, and features a graphical interface, like the rest of Bsafe’s i5/OS offerings. The product also includes a set of compliance reports for SOX, HIPAA, Basel-II, COBIT, and others.
The Policy Compliance Manager is the second major feature added to Bsafe Enterprise Security version 5.5, which Bsafe announced in April. The other major feature was a new cross-platform auditing module that enables companies to run audit reports across i5/OS, Linux, mainframe, and Windows servers from a single screen.
For more information on Bsafe Enterprise Security, see the company’s Web site at www.bsafesolutions.com.