Skip Links

Network World

  • Social Web 
  • Email 
  • Close

PricewaterhouseCoopers' spin-off tackles governance, risk and compliance

Brabeion Software uses policy and audit content developed at PricewaterhouseCoopers' to help customers stay compliant
By Denise Dubie , Network World , 10/03/2007

PricewaterhouseCoopers' spin-off Brabeion Software this week upgraded its compliance management platform to provide customers with more than 6,000 control tests on ISO and other standards.

Brabeion, founded in 2005, commercialized a software platform developed at PricewaterhouseCoopers around 2000. The technology, dubbed Enterprise Security Architecture System (ESAS) at PricewaterhouseCoopers, was originally designed to let large companies create information security programs by unifying security efforts through policies and controls, rather that just technology, Brabeion executives say.

Brabeion spun two products from the technology, the IT Risk & Compliance Center (ITRCC) and IT Risk & Compliance Manager (ITRCM). The former product offers customers a control portal through which they can view enterprise-wide policies and compliance with standards such as the Health Insurance Portability and Accountability Act (HIPAA) and the  Sarbanes-Oxley Act, among others. And the latter provides customers with an automated means to rationalize their policies and controls against those required by regulatory or business standards.

Updated to Version 3.0 this week, ITRCM taps a library of content that details the controls IT managers are required to prove to Sarbox auditors, for instance, and it also includes comprehensive information on control frameworks such as COBIT (Control Objectives for Information and related Technology). The company added with this release the ability to define role-based dashboards that provide comprehensive metrics, track user policy acceptance and remediation efforts, among other things.

"Compliance is about more than technology. It requires people, processes and technology. We have integrated those three facets to provide unified policy management across large companies," says Steve Schlarman, chief compliance strategist at Brabeion, who previously served as a director in PricewaterhouseCoopers' Advisory Practice focusing on information security consulting and auditing. "Brabeion creates reference models based on control frameworks such as ISO and also provides reference modules for major regulations such as HIPAA."

The core policy software requires no client agent to be installed, sits on a Web server and includes a database server. The software uses APIs, or a universal agent, to collect compliance-related data from existing systems such as databases, assessment technologies and third-party software. The interface is Web-based and features role-based dashboards that can be used by various different staff members based on their access rights within the organization. For instance, security managers can log in to the product to see how assets are being protected and if the means of protection complies with regulatory standards.

Partner Content
CA logo

CA Network & Voice Resource Center

Comprehensive Network & Voice Management Visit CA Network & Voice Management Resource Center and get insights into industry best practices, information that helps you to address your challenges.

CA Network & Voice Management Resource Center

whitepaper

Managing Voice Over IP for Successful Convergence

Voice over IP (VoIP) has much to offer in cost savings but some customers have concerns about VoIP call quality compared to the quality of traditional voice services. This white paper will help you learn how to take the right steps so that voice quality is assured.

Managing VoIP for Successful Convergence

whitepaper

The Changing Face of Network Management

Managing your network is serious business. This paper discusses the benefits of integrating configuration change-awareness into your network fault management solution

Download Whitepaper

Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.

Videos

rssRss Feed
Save The Date!
What They Are Saying

and there is always a but... firebug doesnt work :(- Anonymous

Join the Discussion