CHICAGO (April 15, 2009) - Trustwave, the leading provider of on-demand data security and payment card industry compliance management solutions to businesses and organizations throughout the world, unveils a major update to its Governance, Risk Management and Compliance (GRC) solution at the RSA Conference, booth #316, at the Moscone Center in San Francisco.
Trustwave's solution - called Trustwave GRC - automates enterprise risk management and compliance validation across multiple industry and regulatory standards - such as the Payment Card Industry Data Security Standard (PCI DSS), Sarbanes-Oxley (SOX) and Gramm-Leach Bliley Act (GLBA). Trustwave GRC is designed to streamline compliance by eliminating traditionally labor-intensive tasks such as internal and third party compliance reviews, completion of multiple compliance assessment questionnaires, business and IT risk assessments, and internal or external audit testing.
Trustwave GRC also automates a compliance team's many other key work activities, such as vendor management, pre-audit evidence collection, SOX quarterly process certifications, asset/data classification reviews, and business impact analysis questionnaires. Trustwave GRC aggregates reporting into a central dashboard with the ability to incorporate multiple workflows, regulations and policies, and organizational views into one integrated software solution.
The enhanced Trustwave GRC includes several new features to better manage and automate compliance such as:
- Redesigned user and administration interfaces: A redesigned user and administration interface that is fully configurable within the Graphical User Interface (GUI)
- Questionnaire versioning: Full questionnaire versioning with multiple states
- Action item workflow: Expanded advanced workflow capabilities including remediation, verification, audit, incident, exception, vulnerability and custom action tracking
- Cognos® reporting: Business Intelligence (BI) reporting through Cognos®
According to the recent Aberdeen Group Survey, Continuously Compliant: Ensuring Proactive, Comprehensive Compliance1:
The value of any compliance-enabling technology or service is ultimately tied to the quantifiable results it delivers to the organization. While driving substantial business-focused performance improvements through a comprehensive compliance framework has been a challenge for a variety of organizations, Best-in-Class companies are realizing measurable benefits from their compliance activities:
- 15 percent increase in accuracy of compliance related information
- 13 percent increase in ability to detect weaknesses in compliance controls and procedures
- 12 percent decrease in number of actual compliance incidents and breaches
"As the leading web-based GRC platform, Trustwave has enhanced its offering, providing a flexible solution that can be customized to a customer's compliance needs," says Robert J. McCullen, chairman and CEO of Trustwave. "Trustwave GRC facilitates compliance and solutions to business requirements, while enabling an effective and efficient risk and compliance management life cycle, supported by the industry's leading intelligent questionnaire and automated workflow capabilities."
About Trustwave
Trustwave is a leading provider of on-demand and subscription-based information security and payment card industry compliance management solutions to businesses and government entities throughout the world. For organizations faced with today's challenging data security and compliance environment, Trustwave provides a unique approach with comprehensive solutions that include its flagship TrustKeeper® compliance management software and other proprietary security solutions including SIEM , WAF , EV SSL certificates and secure digital certificates . Trustwave has helped hundreds of thousands of organizations-ranging from Fortune 500 businesses and large financial institutions to small and medium-sized retailers-manage compliance and secure their network infrastructures, data communications and critical information assets. Trustwave is headquartered in Chicago with offices throughout North America, South America, Europe, Africa, Asia and Australia. For more information, visit https://www.trustwave.com/en-us/.
1 "Continuously Compliant: Ensuring Proactive, Comprehensive Compliance," by Stephen M. Walker II, Aberdeen Group, September 2008.