Upload
arrow-ecs-uk
View
669
Download
1
Tags:
Embed Size (px)
Citation preview
IT GRC With Symantec
Chris Collier
Presales Specialist
Agenda
• What Is IT GRC?
• Common IT GRC Requirements
• Common Qualification Questions
• Symantec Control Compliance Suite
• Summary
• Upcoming Security Webinars
• Q&A
2
What is IT GRC?
What is IT GRC?
4
G
RC
Governance
Risk Management
Compliance
the overall management approach to direct and controlthe entire organization.
the set of processes through which management identifies, analyses & responds appropriately to risks that might adversely affect the organization.
conforming with stated requirements(defined for example in laws, regulations, contracts, strategies and policies)
Who does it involve?
Everyone!IT GRC is dealt with by more than one business unit as it effects the entire
organisation.
C-level & Senior level executives will have more direct input into an organisationsIT GRC posture than at lower levels but it is the duty of all employee’s to ensure
the organisations IT GRC posture is maintained and enhanced.
Common IT GRC Requirements
Common IT GRC Requirements
6
- Find the potential risk exposure of an order processing systems.
- Assess the entire risk exposure throughout the company.
- Evaluate if company systems are secured, configured, and patched according to standards.
- Evaluate procedural controls by providing automated Web-based questionnaires.
- Prepare for upcoming regulatory compliance audits.
- Simplify policy management throughout the company.
Symantec Control Compliance Suite
Control Compliance Suite
8
7 Key Components:
- Symantec™ Control Compliance Suite Risk Manager
- Symantec™ Control Compliance Suite Policy Manager
- Symantec™ Control Compliance Suite Standards Manager
- Symantec™ Control Compliance Suite Vulnerability Manager
- Symantec™ Control Compliance Suite Assessment Manager
- Symantec™ Control Compliance Suite Virtualization Security Manager
- Symantec™ Control Compliance Suite Vendor Risk Manager
All of these modules can be used separately or together , it is all dependant on the customers requirements.
Common Qualification Questions
Common Qualification Questions
- Do you have to comply with any regulatory Standards/Frameworks?
- How are you ensuring that you comply with them?
- Have you ever risk assessed your business?
- How do you asses you business procedural controls?
- How are you ensuring that your staff are aware of business procedures?
- Do you know how vulnerable your business systems are?
10
Summary
Summary
- Managing IT risk and compliance in today's enterprise is challenging.
- Symantec Control Compliance Suite helps you address these challenges
- Control Compliance Suite provides a rich, data-driven view of your customers environment.
- Symantec's Control Compliance Suite automates IT risk and compliance processes
- Control Compliance Suite addresses IT risk and compliance challenges through a four-step process:
- Plan
- Assess
- Report
- Remediate
12
Upcoming Security Webinars
Upcoming Security Webinars
Register at:
http://arrowecs.co.uk/Solutions/Security-Solutions/Symantec/Summer-of-Security-Webinar-Series
Questions?