SOURCE: WebLayers


February 22, 2010 08:30 ET

WebLayers to Validate Third Party Policy Libraries; Sparks Industry Wide Movement for Improved I.T. Governance

Evans Resource Group First Partner to Develop and Certify PCI Policy Library for IBM WebSphere MQ Ensuring More Secure Credit Card Transactions

CAMBRIDGE, MA--(Marketwire - February 22, 2010) - WebLayers, Inc. today announced the WebLayers Policy Library Annex, an expansion of its business partner program designed to advance the industry's software development efforts for automated and distributed information technology (I.T.) governance

Much like the application stores for developers, the WebLayers Policy Library Annex provides a platform and evaluation process for architects, integrators and developers with third party domain expertise to verify their knowledge and automate and enforce out-of-the-box policy libraries. These libraries will help their customers establish and enforce best practices, corporate mandates and industry standards.

Through the WebLayers Policy Library Annex, WebLayers business partners will be better able to address the expensive, long-term effects that non-compliance has on companies and their customers. These can range from security flaws and regulatory compliance issues to software glitches creating erroneous credit card transactions, inaccurate insurance and medical data or breaches in matters of national security.

Evans Resource Group is the first partner to automate and validate its policies through the WebLayers Policy Library Annex. Specifically, Evans Resource Group has strengthened its payment card industry (PCI) data security standard (DSS) standard compliance library for IBM WebSphere MQ messaging middleware on WebLayers Center.

For businesses that process, store or transmit payment card transactions and information, PCI compliance is mandatory. While nearly all organizations are aware of this regulation, either time or resources constraints make it difficult to adhere to industry requirements when it comes to middleware and these oversights can result in an audit or fine.

"It's not enough to secure the perimeter. PCI compliance requires all aspects of the technology stack are secure. WebSphere MQ security is configuration based and requires I.T. governance to facilitate easy visibility into that configuration," said Maryellen Evans, managing director, Evans Resource Group. "Since WebLayers met these requirements, has an extensive policy library for IBM WebSphere MQ and supports standards-based development environments including mainframes, it simply made good business sense to align with them in an effort to further reinforce the security of credit and debit card transactions for our clients."

The combination of PCI compliance and I.T. governance strengthens Evans Resource Group's ability to prevent credit card fraud and helps protect against various other security vulnerabilities and threats. Evans Resource Group has reinforced these capabilities by applying them to IBM WebSphere MQ, the market-leading message-oriented middleware that is used by almost 10,000 organizations of different sizes, spanning many industries around the world. Additionally, the policies that Evans Resource Group plans to automate and validate additional policy libraries for Sarbanes-Oxley, the Health Information Portability and Accountability Act (HIPAA), the Federal Information Security Management Act (FISMA) and the Gramm-Leach-Bliley Act (GLB) through the WebLayers Policy Library Annex.

"We continue to hear about the impact of computer failures and software glitches on business and consumers whether they're trying to make a credit card purchase or execute more sophisticated transactions. The efforts that WebLayers is taking, along with its business partners Evans Resource Group and IBM, are a significant step forward in helping to reduce the high incidents of fraud and unnecessary transaction errors that stem from violations of policies and best practices. While we can't eliminate these problems, we can help reduce them in the middleware layer through I.T. governance during the software design stage and by monitoring production environments in an automated, on-going process," said Jeff Papows, president and CEO, WebLayers.

Working with experts from WebLayers, subject matter experts are invited to join the WebLayers business partner program so they can develop and automate their companies' established policies through the Annex using WebLayers Center or WebLayers zCenter for the mainframe. These automated and distributed I.T. governance platforms can proactively identify potential policy violations and illustrate their impact on the organization through sophisticated data analytics. Additionally, partners are able to take advantage of WebLayers's extensive policy libraries that include COBOL, Java, WebSphere MQ and service oriented architectures (SOA), for example.

About WebLayers
WebLayers provides the industry's most comprehensive I.T. governance platform available today. By centralizing and distributing policy management throughout the entire software development life cycle on multiple I.T. domains including mainframes, WebLayers substantially reduces the costs associated with I.T. governance. WebLayers also offers the largest collection of industry-proven policies, including extensions for industry standards including insurance, manufacturing and finance, which speeds governance implementation and enforcement from design time through production.

Contact Information