VirtuStream ViewTrust Foundations - Dell · 2020. 3. 15. · with tools – Anti-Virus, Firewalls,...

© 2017 Virtustream, Inc. All Rights Reserved.


Viewtrust CONTINUOUS SECURITY, RISK AND COMPLIANCE MANAGEMENT

TIMUR COLGECEN

DIRECTOR, SPECIALTY SALES


What Do Firms Need To Do About IT?

Security and risk management leaders are seeking to integrate

their risk management solutions to gain a more holistic view of

risk across the enterprise. Operational risk management

solutions serve as the core element of integrated risk

management.

-Gartner, Magic Quadrant for Operational Risk Management Solutions, Dec. 2016

3

“…breached customers are often affected months and even

years later while still incurring costs.”

-Forrester; Lessons Learned From The World's Biggest Data Breaches And Privacy Abuses, 2016


Our Customers Face Daunting Challenges • Rising compliance and validation

costs

• Un-coordinated compliance

workstreams across the

enterprise

• Limited visibility into security,

compliance and risk activities

• Reactive and less-than-timely

threat responses

• No real-time views of the

enterprise

• Difficulty in prioritizing operational

responses to threat landscape

CIO, CISO,

CTO

Applications

OpRisk

Security

4

Compliance


The Evolution of Security and Compliance Solutions

5

• Managing security against threats started

with tools – Anti-Virus, Firewalls, IDS’s,

SIEMs, etc..

• Industry regulations (FISMA, SOX, etc.)

implemented to start managing security by

compliance

• Today, with constant attacks on networks

and data –

Enterprises must evolve to manage

security by RISK and do it

continuously!

1995 2000 2005 2010 2015

Se

cu

rity

Ma

na

ge

me

nt

2016-17

Tools

Compliance

Enterprise Risk

Management

Continuous Risk & Compliance

Monitoring

FISMA

SOX

PCI

HIPAA

GRC

Anti-Virus

Firewall

SIEM

IDS / ATP


What is Viewtrust?

Viewtrust provides continuous proactive monitoring of risks across

enterprise cloud and non-cloud environments to address risks due to Cyber,

Compliance, and IT Operations.

Enterprise Risk Management

Compliance

Risk

IT Operational Risk

Cyber Risk

VIE

WT

RU

ST

6


Viewtrust Is a Versatile Tool


8

• Tiered deployment of collectors in Hybrid environments

• Centralized or distributed analysis

• Cube-based analytics with SQL or NoSQL data warehouse.

Operational deployment model

SAP GRC

Patch Manager

IT System Assets

Reference IA

Controls

Framework

Enterprise Risk

and Compliance

Reporting

Unified Dashboard

Collector(s) Sensors

SQL or

NoSQL

Assets


9


10

Vulnerability Report


• HIPAA HiTech

• DIACAP

• DOD-RMF

• FedRAMP REV 4 High

• IBM ISEC

• CCM

• CSC-CIS Critical Security

Controls VER 6.1

• NERC

• PCI DSS 3.1

• ISO/IEC 27002:2013 (IT)

• ISO/IEC 27017:2015 (Cloud)

• ISO 27001:2013

• ISO 27001:2005

• SANS Top 20 v6.0

• FISCAM

• NIST 800-53-REV4-Draft

• NESA (for UAE)

11

Control Catalogs


• Viewtrust enables customers to gain cost

efficiency through automation of their

compliance/risk management and monitoring

• Customers benefit from a holistic view and a

management platform for their enterprise risk,

governance, and compliance on a continuous

monitoring basis

• Viewtrust enables customers to have more

secure systems by being more proactive with

their enterprise compliance and risk

management

A Summary of the Benefits of Viewtrust

15

Compliance

Risk

IT

Operational

Risk

Cyber Risk

360º Risk view

Governance & IA controls

Regulatory requirements

Sensor data Threat data

VirtuStream ViewTrust Foundations - Dell · 2020. 3. 15. · with tools – Anti-Virus, Firewalls,...

Documents

Transcript of VirtuStream ViewTrust Foundations - Dell · 2020. 3. 15. · with tools – Anti-Virus, Firewalls,...