Air India Etc. Etc vs Nergesh Meerza & Ors. Etc. Etc on 28 August ...
VirtuStream ViewTrust Foundations - Dell · 2020. 3. 15. · with tools – Anti-Virus, Firewalls,...
Transcript of VirtuStream ViewTrust Foundations - Dell · 2020. 3. 15. · with tools – Anti-Virus, Firewalls,...
© 2017 Virtustream, Inc. All Rights Reserved.
© 2017 Virtustream, Inc. All Rights Reserved.
Viewtrust CONTINUOUS SECURITY, RISK AND COMPLIANCE MANAGEMENT
TIMUR COLGECEN
DIRECTOR, SPECIALTY SALES
© 2017 Virtustream, Inc. All Rights Reserved.
What Do Firms Need To Do About IT?
Security and risk management leaders are seeking to integrate
their risk management solutions to gain a more holistic view of
risk across the enterprise. Operational risk management
solutions serve as the core element of integrated risk
management.
-Gartner, Magic Quadrant for Operational Risk Management Solutions, Dec. 2016
3
“…breached customers are often affected months and even
years later while still incurring costs.”
-Forrester; Lessons Learned From The World's Biggest Data Breaches And Privacy Abuses, 2016
© 2017 Virtustream, Inc. All Rights Reserved.
Our Customers Face Daunting Challenges • Rising compliance and validation
costs
• Un-coordinated compliance
workstreams across the
enterprise
• Limited visibility into security,
compliance and risk activities
• Reactive and less-than-timely
threat responses
• No real-time views of the
enterprise
• Difficulty in prioritizing operational
responses to threat landscape
CIO, CISO,
CTO
Applications
OpRisk
Security
4
Compliance
© 2017 Virtustream, Inc. All Rights Reserved.
The Evolution of Security and Compliance Solutions
5
• Managing security against threats started
with tools – Anti-Virus, Firewalls, IDS’s,
SIEMs, etc..
• Industry regulations (FISMA, SOX, etc.)
implemented to start managing security by
compliance
• Today, with constant attacks on networks
and data –
Enterprises must evolve to manage
security by RISK and do it
continuously!
1995 2000 2005 2010 2015
Se
cu
rity
Ma
na
ge
me
nt
2016-17
Tools
Compliance
Enterprise Risk
Management
Continuous Risk & Compliance
Monitoring
FISMA
SOX
PCI
HIPAA
GRC
Anti-Virus
Firewall
SIEM
IDS / ATP
© 2017 Virtustream, Inc. All Rights Reserved.
What is Viewtrust?
Viewtrust provides continuous proactive monitoring of risks across
enterprise cloud and non-cloud environments to address risks due to Cyber,
Compliance, and IT Operations.
Enterprise Risk Management
Compliance
Risk
IT Operational Risk
Cyber Risk
VIE
WT
RU
ST
6
© 2017 Virtustream, Inc. All Rights Reserved.
Viewtrust Is a Versatile Tool
© 2017 Virtustream, Inc. All Rights Reserved.
8
• Tiered deployment of collectors in Hybrid environments
• Centralized or distributed analysis
• Cube-based analytics with SQL or NoSQL data warehouse.
Operational deployment model
SAP GRC
Patch Manager
IT System Assets
Reference IA
Controls
Framework
Enterprise Risk
and Compliance
Reporting
Unified Dashboard
Collector(s) Sensors
SQL or
NoSQL
Assets
© 2017 Virtustream, Inc. All Rights Reserved.
9
© 2017 Virtustream, Inc. All Rights Reserved.
10
Vulnerability Report
© 2017 Virtustream, Inc. All Rights Reserved.
• HIPAA HiTech
• DIACAP
• DOD-RMF
• FedRAMP REV 4 High
• IBM ISEC
• CCM
• CSC-CIS Critical Security
Controls VER 6.1
• NERC
• PCI DSS 3.1
• ISO/IEC 27002:2013 (IT)
• ISO/IEC 27017:2015 (Cloud)
• ISO 27001:2013
• ISO 27001:2005
• SANS Top 20 v6.0
• FISCAM
• NIST 800-53-REV4-Draft
• NESA (for UAE)
11
Control Catalogs
© 2017 Virtustream, Inc. All Rights Reserved.
• Viewtrust enables customers to gain cost
efficiency through automation of their
compliance/risk management and monitoring
• Customers benefit from a holistic view and a
management platform for their enterprise risk,
governance, and compliance on a continuous
monitoring basis
• Viewtrust enables customers to have more
secure systems by being more proactive with
their enterprise compliance and risk
management
A Summary of the Benefits of Viewtrust
15
Compliance
Risk
IT
Operational
Risk
Cyber Risk
360º Risk view
Governance & IA controls
Regulatory requirements
Sensor data Threat data
© 2017 Virtustream, Inc. All Rights Reserved.
© 2017 Virtustream, Inc. All rights reserved