Check Point Buys Dynasec for GRC Software

Check Point will integrate Dynasec's risk management and compliance software easy2comply with its firewalls, IPS and other security products to provide end-to-end compliance management for customers.

Check Point Software Technologies will acquire Israel-based Dynasec to enhance its governance, risk-management and compliance (GRC) portfolio to help customers grappling with regulatory requirements.

CheckPoint's 3D Security strategy aims to compile and publish best practices for corporate security policies and to develop products that meet those best practices. Dynasec's GRC software will boost 3D Security's goals and integrate with the company's security, business and consulting service, CheckPoint said Oct. 31.

The financial terms of the deal were not disclosed, but Globes, an Israeli business publication, estimated the value of the deal at $10 million to $20 million. The acquisition is expected to close within the next month.

"This acquisition makes it very simple for customers to establish corporate policies that adhere to a wide range of global compliance regulations," said Amnon Bar-Lev, president of Check Point. Security should be viewed as a business process, "focusing on policy, people and enforcement," according to Bar-Lev.

Organizations have to comply with a growing body of industry standards and government regulations that govern how data and systems are protected and managed. The compliance and IT staff have to implement a consistent security framework across the organization that meets GRC requirements without disrupting day-to-day business operations. Dynasec's software would allow Check Point to help customers translate compliance requirements into IT-security policies that map to their overall business objectives, Check Point said.

Check Point's acquisition of Dynasec comes on the heels of two acquisitions last month in the adjacent security information and event management (SIEM) space. The GRC technology market has a lot in common with SIEM as they both deal with how organizations handle security response and remediation, IT risk evaluation and compliance management. IBM closed its Q1 Labs acquisition on Oct. 26. McAfee's NitroSecurity deal has not closed yet.

Dynasec sells "easy2comply" software, which provides customers with a set of GRC frameworks for hundreds of compliance requirements, including Sarbanes-Oxley and the Health Insurance Portability and Accountability Act (HIPAA). The easy2comply program helps customers manage internal controls, meet regulatory risk-management deadlines and streamline the organization's information-security process, Check Point said.

By integrating the frameworks into CheckPoint's existing security products, such as the firewall, VPN, application-control, intrusion-prevention, data-loss prevention, mobile-access and endpoint-security products, customers will be able to automate the compliance tasks and apply them consistently throughout the organization. The combined security and GRC products will allow customers to manage the entire 3D Security process, from corporate objectives to policies and security enforcement, in one place and maintain a "continuous holistic security and compliance picture," according to the company.

"By providing an easy way to define, manage and translate security policies into IT security controls, we are further enhancing the implementation of 3D Security for our customers," Bar-Lev said.

The easy2comply software can be run on-premise on physical servers, or accessed as a software-as-a-service offering.

Dynasec has customers in over 20 different countries and offices in Israel, the United States, Canada, the United Kingdom, the Netherlands, Spain and Hungary. All 26 Dynasec employees are expected to join Check Point after the acquisition closes.