SOURCE: e-Security

April 04, 2005 12:31 ET

e-Security's Control Packs™ Cut Costs and Time From Compliance Programs

Pre-Packaged Solution Jump-Starts Compliance Monitoring Across Regulations

VIENNA, VA -- (MARKET WIRE) -- April 4, 2005 -- e-Security, the leading supplier of security information management and compliance monitoring solutions, announced today the availability of Sentinel™ Control Packs™. Control Packs enable organizations to:

--  Reduce audit preparation time and costs
--  Jump-start compliance monitoring programs by implementing out-of-the-
    box capabilities to monitor and report on IT controls effectiveness
--  Implement a single solution to address IT controls across regulations
--  Close the knowledge gap between what security policies dictate should
    happen and what is actually happening
--  Demonstrate to auditors and regulators that organizations are
    monitoring and reporting on security controls to comply with applicable
    regulations
--  Gain the visibility and control required to continually assess an
    organization's compliance posture
    
"Regulators will become more aware of the role of information technology in compliance -- the benefits it can bring to improving internal controls and governance, as well as the risks that poor information systems create," notes French Caldwell, Research Vice President for Gartner Inc. in Gartner's February 3rd research report, "The 2005 Planning Guidance for Compliance." The report also stated that, "Process owners are looking to simplify and reduce the cost of compliance. They will be interested in best practices and technology that help them to do that."

"In many organizations today, audit preparation and review are draining budget and resources," said Reed Harrison, CTO of e-Security. "Companies want a cost-effective method for maintaining and demonstrating compliance with government regulations and internal policies. Implementing security policies to support regulatory requirements without effective controls in place to monitor and enforce those policies creates a gap between what policies dictate should happen and what actually occurs. By translating paper-based policies into automatically monitored IT controls, Control Packs enable organizations to close this gap and cut time and costs from their compliance initiatives. Control Packs' out-of-the box capabilities are essential when inflexible audit dates and other regulatory pressures drive project deadlines."

Control Packs are pre-packaged solutions that enable organizations to capture and analyze data in real time, identify and respond to violations, and continually assess their compliance-monitoring program. Control Packs address specific IT controls in general categories such as information access, information security, incident management, and change management. Each Control Pack contains:

--  Agents, which are pre-built and tested programs to collect data from a
    variety of devices, systems, applications, and other sources.
--  Correlation rules to analyze the collected data and determine if and
    when violations occur.
--  ITRAC™ process templates to guide and track resolution processes.
--  Reports for continual assessment.
    
"Most organizations today are required to comply with multiple regulations," said George Hamilton, Senior Analyst, Yankee Group. "For example, public companies must comply with the Sarbanes-Oxley Act, and many of these companies must also comply with HIPAA. With Control Packs, you can implement a single solution to address specific IT controls that apply across both regulations."

e-Security's professional services team, e-Security certified partners, and trained internal resources can add or modify agents, correlation rules, reports, and other Control Pack content to meet specific requirements.

About e-Security, Inc.

e-Security, Inc. is the leading global provider of security information management and compliance monitoring solutions. The world's largest corporations, government organizations, and managed security service providers (MSSPs) rely on e-Security's award-winning software and comprehensive services to improve their security posture across the extended enterprise, achieve and monitor compliance with internal policies and government regulations, and drive time and costs out of current security and compliance initiatives. For more information on e-Security, please visit www.esecurity.net.

e-Security and Sentinel are trademarks of e-Security, Inc. All other products and brand names are trademarks or registered trademarks of their respective owners.

Contact Information