Meeting compliance: FISMA, PCI, SOX, FERC and HIPAAMeet compliance, strengthen internal controls and reduce costs. Validate and enforce user access including administrator and application-to-application passwords to reduce operational costs and meet IT audit compliance for standards such as FISMA, PCI, SOX, FERC and HIPAA. FISMA complianceIrdeto Password Authority supports and enables compliance with the Federal Information Security Management Act of 2002 (FISMA) processes and standings for federal agencies, contractors and other organizations. FISMA was passed in 2002 as part of the United States E-Government Act and delivers a mandatory list of processes that must be followed for all information systems. The National Institute of Standards and Technology (NIST) Special Publication 800 series of documents form a strong foundation for FISMA compliance and are further reinforced by OMB Circular A-130 and various agency-specific directives that govern agency information assurance efforts. Learn more by downloading our white paper Attaining FISMA Compliance. PCI complianceIrdeto Password Authority supports and enables compliance with the requirements of the Payment Card Industry Data Security Standard (PCI DSS) V1.2. To aid in preventing the theft of payment card information, key industry players including Visa, MasterCard and Discover created PCI DSS. In September 2006, the group published Version 1.1 of the specification that incorporates feedback from the Version 1.0 specification. Learn more about PCI compliance by downloading our white paper on Attaining PCI Compliance. SOX complianceIrdeto Password Authority helps IT organizations meet the requirements of Sarbanes-Oxley (SOX) assertion and attestation compliance processes. The challenges of complying with the relevant sections of the SOX legislation are broad and complex for any IT organization. For IT organizations, SOX is all about the controls that are in place to protect the financial reporting process. Learn more about SOX compliance by downloading our white paper on Attaining SOX Compliance. FERC complianceIrdeto Password Authority supports and enables compliance with Federal Energy Regulatory Commission (FERC) Critical Infrastructure Protection (CIP) Reliability Standards. The CIP standards include several sections that address requirements for managing datacenter passwords. While most agencies and utilities have investigated password management from the end-user perspective, few have addressed the need for password management for elevated privilege accounts used by administrators and unattended applications. Learn more about FERC compliance by downloading our white paper on Attaining FERC Compliance. HIPAA complianceIrdeto Password Authority supports and enables compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) for covered organizations. HIPAA’s compliance dates of April 21, 2005 (April 21, 2006 for small health plans) demanded much attention, resources and money from the covered organizations to remedy their existing and planned systems and processes where electronic protected health information (EPHI) was involved. While security and privacy are linked intrinsically, it is the application of the appropriate security techniques that actually helps to mitigate the risks associated with the identified threats to stored or transmitted EPHI. Learn more about HIPAA compliance by downloading our white paper on Attaining HIPAA Compliance. |