TruSecure's latest version of its enterprise-class regulation compliance software includes a graphical report card...
for companies trying to comply with regulations such as the Sarbanes-Oxley act.
Risk Commander 2.0 designed with open application program interfaces (APIs), can import data from many sources and applications and provide compliance reports for several regulations and standards, including the ISO 17799 IT security standard, said Eric Cady, product manager for Risk Commander.
The first version of Risk Commander was focused on security risk management, while the 2.0 version added regulatory compliance modules for regulations. Risk Commander 2.0, a J2EE application, allows users to answer questions via a web browser to determine the company's level of compliance with regulations. Risk Commander gives users a graphical report card on compliance with the regulations or standards the user wants to test.
The software is intended to give enterprises an objective analysis of compliance and risk issues, beyond human ratings that can contain errors. The program generates compliance scores and recommendations through a series of dashboards, scorecards and reports that prioritise compliance, vulnerability and risk-remediation efforts.
Customisable filters help users find compliance issues of interest to the organisation, and Risk Commander generates a remediation task for every compliance issue identified.
The cost of Risk Commander 2.0 starts at $150,000 for an enterprise licence with rights to run it on two central processing units, including application servers.
Grant Gross writes for IDG News Service