Products

Compliance Automation

SecureVue delivers a true unified situational awareness platform that delivers comprehensive security intelligence and provides the real-time information.

SecureVue® from EiQ Networks, the industry’s first unified situational awareness platform, provides unparalleled compliance automation by supporting completecompliance reporting, configuration auditing and continuous monitoring. As organizations feel the pressure from an increasing number of regulations, best practices and standards for information security, the need to automate as much of the compliance monitoring and reporting process as possible becomes acute.

The complexities of implementing an effective information security program has led to a proliferation of best practices and frameworks – some mandatory, others voluntary – for implementing both security programs and best practices of security controls that not only address threats, but compliance as well. From frameworks such as ISO27001 and 27002, and COBIT, to control standards such as NIST 800-53 which are mandatory for all United States federal government agencies, the ability to provide evidence of compliance with these best practices and frameworks is becoming acute.

Payment Card Industry Data Security Standard (PCI DSS)

EiQ’s SecureVue unified situational awareness platform provides comprehensive information security management and PCI-DSS compliance reporting from a single console. SecureVue brings together all the information security data from across the enterprise into a “single pane of glass” for complete visibility into PCI-DSS compliance and security operations. Unlike security point products that are limited to a “silo” of one or two types of data, SecureVue enables users to gain enterprise-wide analysis of all security data related to PCI-DSS compliance, including asset and configuration data, logs and events, system vulnerabilities, network flows and system performance. From comprehensive PCI-DSS reporting, to hands-on security operations, SecureVue provides organizations with the most comprehensive PCI-DSS compliance solution available in a single platform.

Federal Information Security Management Act (FISMA)

EiQ’s SecureVue Unified Situational Awareness Platform contains over 250 reports mapped to individual sections of the NIST 800-53 standard, and also contains a comprehensive compliance library – containing over 2,500 technical and functional controls – to enables organizations to define, monitor and measure FISMA compliance. The platform’s wizard-based policy mapping also allows organizations to add and modify regulations and best practices to address a broad range of unique business drivers, including internal practices, service level agreements and business partner requirements. SecureVue’s automated end-to-end correlation of data – coupled with built-in analysis and the ability to conduct advanced forensics – makes evaluating FISMA compliance an easily manageable task.

HIPAA / HiTECH Act

EiQ’s SecureVue unified situational awareness platform provides comprehensive information security management, HIPAA and HITECH Act compliance reporting and configuration auditing from a single console. Using an integrated data model, SecureVue goes beyond the compliance monitoring and reporting of individual security point products, collecting all compliance-related data, including events, configurations and performance. SecureVue brings together all the information into a “single pane of glass” for complete visibility into HIPAA security compliance and operations. From comprehensive HIPAA security reporting, to hands-on security operations, SecureVue provides organizations with the most comprehensive HIPAA and HITECH Act compliance automation solution available in a single platform.

North American Electric Reliability Corporation Critical Infrastructure Protection (NERC-CIP)

EiQ’s SecureVue unified situational awareness platform provides comprehensive information security management and NERC CIP compliance reporting from a single console. SecureVue brings together all of the information security data from across the enterprise into a “single pane of glass” for complete visibility into NERC CIP compliance and security operations. SecureVue enables users to gain enterprise-wide analysis of all security data related to NERC CIP standards compliance, including asset and configuration data, logs and events, system vulnerabilities, network flows and system performance. From comprehensive NERC CIP reporting, to hands-on security operations, SecureVue provides organizations with the most comprehensive NERC CIP compliance solution available in a single platform.

Sarbanes-Oxley Act (SOX)

EiQ’s SecureVue unified situational awareness platform helps organizations fully address SOX by providing comprehensive compliance automation, including real-time monitoring, reporting and configuration auditing of systems that are associated with financial reporting. SecureVue contains over 250 reports mapped to individual sections of the COBIT framework, and also contains a comprehensive compliance library – containing over 2,500 technical and functional controls – to enable organizations to define, monitor and measure COBIT and SOX system configuration compliance. SecureVue provides organizations with the most comprehensive PCI-DSS compliance solution available in a single platform.

Gramm-Leach-Bliley Act (GLBA)

EiQ’s SecureVue unified situational awareness platform combines advanced, real-time security monitoring and reporting with configuration auditing to help organizations address the greatest number of FFIEC requirements mandated in the IS Handbook. SecureVue contains over 200 reports mapped to individual sections of the IS Handbook, as well as a comprehensive compliance library containing over 2,500 technical and functional controls, enabling organizations to define, monitor and measure GLBA and FFIEC IS Handbook system configuration compliance.

Massachusetts law 201 CMR 17.00 (MA 201)

EiQ’s SecureVue unified situational awareness platform provides comprehensive compliance automation for the Massachusetts Data Privacy Law, including detailed reporting on a broad spectrum of information security data including events, configurations, network traffic and performance. SecureVue’s integrated configuration auditing capability also provides mandatory configuration compliance reporting – a key requirement of the law – for CIS benchmarks, DISA STIGs and other security configuration standards. SecureVue provides organizations with the most comprehensive MA 201 CMR 17.00 compliance automation solution available in a single platform.

UK Code of Connection (CoCo)

The CoCo standard is aligned with ISO 27001, and SecureVue provides comprehensive reporting for CoCo compliance via the ISO 27001 best practice standard. SecureVue maps all compliance data, including data based on events, system configurations, network traffic and performance into detailed compliance reports that map directly into specific sections of the standard. In addition, SecureVue’s configuration auditing capability provides continuous, system-level monitoring for security controls compliance.

National Institute of Standards and Technology Special Publication (NIST) 800-53

EiQ’s SecureVue unified situational awareness platform delivers comprehensive compliance automation for NIST 800-53 through real-time monitoring, reporting and configuration auditing, allowing organizations to fully address the NIST 800-53 framework. SecureVue contains over 250 reports mapped to individual sections of the ISO standard, as well as a comprehensive compliance library containing over 2,500 technical and functional controls, enabling organizations to define, monitor and measure NIST 800-53 system configuration compliance. SecureVue provides organizations with the most comprehensive NIST 800-53 compliance solution available in a single platform.

Control Objectives for Information and related Technology (COBIT)

EiQ’s SecureVue unified situational awareness platform delivers comprehensive compliance automation for COBIT through real-time monitoring, reporting and configuration auditing, allowing organizations to fully address the COBIT framework. SecureVue contains over 250 reports mapped to individual sections of COBIT, and also contains a comprehensive compliance library – containing over 2,500 technical and functional controls – enabling organizations to define, monitor and measure COBIT system configuration compliance. SecureVue provides organizations with the most comprehensive COBIT compliance solution available in a single platform.

DoD Information Assurance Certification and Accreditation Process (DIACAP)

EiQ’s SecureVue unified situational awareness platform provides comprehensive support for the DIACAP C&A process. SecureVue’s broad range of information security data provides complete visibility into assets and the security controls around them. SecureVue’s integrated, real-time quantitative risk management tools provide information assurance professionals with the information they need to understand threats that affect critical systems. Detailed reports across all aspects of security controls can provide C&A officials, such as POA&M teams, with the information they need to validate systems. SecureVue provides organizations with the most comprehensive DIACAP compliance solution available in a single platform.

ISO 27001

EiQ’s SecureVue unified situational awareness platform delivers comprehensive compliance automation for ISO 27001 through real-time monitoring, reporting and configuration auditing, allowing organizations to fully address the ISO 27001 framework. SecureVue contains over 250 reports mapped to individual sections of the ISO standard, and also contains a comprehensive compliance library – containing over 2,500 technical and functional controls – enabling organizations to define, monitor and measure ISO 27001 system configuration compliance. SecureVue provides organizations with the most comprehensive ISO 27001 compliance solution available in a single platform.