SOURCE: Lightwave Security

Lightwave Security

October 20, 2009 09:05 ET

SecureAware From Lightwave Automates IT SOX Compliance

SecureAware® Integrates COBIT® Framework, Making It Easy and Less Expensive for Companies to Build and Communicate Policies for IT SOX Compliance and Audits

ATLANTA, GA--(Marketwire - October 20, 2009) - Lightwave Security, an automated GRC solutions provider, today announced that it has added the COBIT® framework to the SecureAware® v3.7.0 IT Governance, Risk and Compliance (IT GRC) system to help companies comply with the Sarbanes-Oxley Act (SOX) and manage the compliance lifecycle. Lightwave Security has licensed the COBIT IT governance framework from ISACA, a global 86,000-member organization for information governance, control, security and audit professionals.

Complying with industry and government regulations is expensive and has led many companies to adopt IT GRC solutions to automate the process. SecureAware takes IT GRC a step further by incorporating standards and regulation frameworks that automate policy and compliance management. The solution has long incorporated frameworks for Payment Card Industry (PCI) and ISO standards. Adding the COBIT framework extends SecureAware to provide automated IT SOX compliance support and also enables organizations to easily build business continuity plans and align corporate risk assessment and mitigation processes with the stringent requirements of the Sarbanes-Oxley Act of 2002.

"IT GRC solutions are designed to reduce the cost of policy setting, risk management and regulatory compliance by automating manual IT controls embedded in business processes," said Joseph Dell, Lightwave's president. "By incorporating the COBIT framework into SecureAware, we take IT SOX compliance and management to a whole new level of efficiency and economy."

SecureAware is an IT GRC system that helps organizations manage business risks and comply with PCI security standards as well as governmental regulations such as SEC, SOX and others while utilizing ISO 27000 best practices. Used by more than 200 companies, municipalities and government agencies, it is an all-in-one platform for compliance, best practices and security awareness that incorporates an automated compliance workflow system built to ISO 27001 international standards. SecureAware allows organizations to comply with multiple mandates while establishing one defensible standard of care to simplify ongoing compliance management and reduce compliance costs.

In addition to helping organizations manage multiple compliance mandates, SecureAware also helps compliance managers create policy management efficiencies, conduct security awareness training and to identify, mitigate, and reduce business risks. SecureAware collects policies, IT controls and risk information that are located in disparate locations throughout the enterprise, automates repeatable processes and allows organizations to respond rapidly to new compliance mandates, audit requests and evolving business risks.

Jim Troy, a partner at Critical Path Solutions, LLC, a software consulting and professional services firm servicing retailers and Lightwave reseller partner, added, "Integrating the COBIT framework into SecureAware enhances our overall strategic offering to our retail clients by augmenting our current PCI-focused engagements with SOX compliance functionality. Although not all of our retailers are publically traded and do not require SOX compliance, COBIT brings inherent best practices that apply to any company looking to reduce its risk profile. With this product enhancement, we're looking forward to putting the COBIT framework to work for our clients to help relieve the headache of compliance and audits."

SecureAware 3.7.0, which includes the COBIT framework, is a no-cost upgrade for current customers. It is available as enterprise software or Software as a Service (SaaS) in the U.S., Canada, Mexico and Central America from Lightwave Security channel partners. For more information, call 800-616-8597 or visit

About Lightwave Security

Lightwave Security is a GRC solution provider whose vast technical and practical experience provides organizations with a foundation of assurance in managing business and technology risk. Lightwave Security's unique model of out-sourcing compliance with traditionally complex regulatory and technical issues is a cutting edge approach not seen in the security space. Lightwave Security is based in Atlanta, Georgia, with affiliate offices and resources available across the globe. More is information is located at

SecureAware is a registered trademark of Neupart A/S.

Contact Information

  • For more information:
    Monica Shaw
    Carabiner Communications
    Email Contact