BindView Monitors Compliance

By Dennis Fisher  |  Posted 2003-05-28 Print this article Print

Compliance Center is meant to help keep companies in line with federal and state regulations but can also aid in the fight to bring users into compliance with company policies.

BindView Corp. is unveiling a new solution that will help security specialists monitor their companies compliance with the ever-growing array of federal and state regulations regarding data protection and privacy. The companys Compliance Center attempts to place each piece of data into context as it relates to regulations, corporate policies and historical trends. Compliance Center is meant to help keep companies in line with regulations such as the Health Insurance Portability and Accountability Act and the Gramm-Leach-Bliley Act, both of which contain strict rules on the way that data must be handled and secured. But it can also aid in the fight to bring users into compliance with company policies regarding things such as password length.
The new solution is an add-on to the companys flagship BV-Control software, and BindView executives hope it can help security personnel sort through the massive amounts of data they see on a daily basis.
"Everyone talks about the fact that were in the middle of an information revolution, but thats not the case. What we have is a data revolution," said Chris Mullins, director of policy compliance products at BindView, based in Houston. "You need to put the data into context, at which point you have information." For example, an administrator looking to see whether his companys users are complying with a corporate policy that specifies passwords of at least eight characters can pull data showing the length of every users password. But he can also see how the password length has changed over time and compare it against the companys policies as well as any regulations that might stipulate a minimum length or character set. The benchmarks within the solution are taken from the Center for Internet Security, and customers also get access to research from BindViews Razor Team on new security vulnerabilities and threats. Compliance Center also gives customers the ability to take one system on their network that has the desired configuration and use it as an internal benchmark for other machines. Compliance Center will be available in June on Windows platforms, but BindView expects to have support for Linux and a variety of Unix platforms later this year. Most Recent Security Stories:
Search for more stories by Dennis Fisher.
Find white papers on security.
For more security news, check out Ziff Davis Medias Security Supersite.

Submit a Comment

Loading Comments...
Manage your Newsletters: Login   Register My Newsletters

Rocket Fuel