CUPERTINO, Calif. - Feb 6, 2006 - Symantec Corp. (Nasdaq: SYMC) today announced new compliance management software designed to help customers lower the cost of compliance through automated assessment of policies against industry regulations and best practices. Symantec BindView Policy Manager 3.0 assists customers with policy creation, policy mapping and proof of compliance. Scheduled to be available in March, Symantec BindView Policy Manager 3.0 automates management of the policy lifecycle to effectively assure coverage of regulatory and framework objectives. Symantec BindView Policy Manager 3.0 provides out-of-the-box integration with Symantec Compliance Manager 3.0, which delivers automation to help businesses implement, measure and maintain compliance with security configuration standards.
"Large organizations often have many regulations with which they must demonstrate compliance," said Eric Ogren, security analyst at the Enterprise Strategy Group. "Security teams must match alerts of policy violations with specific regulatory clauses and make recommendations to efficiently bring the enterprise back into compliance. Symantec clientless technology effectively lowers the administrative costs of corporate compliance programs."
Symantec BindView Policy Manager 3.0 offers customers the ability to fulfill regulatory obligations by enabling them to create and disseminate IT and non-IT policy throughout their organizations. Customers are provided the option to create new policy from scratch, leverage pre-written sample policies, or import existing policies into the database. Symantec BindView Policy Manager also provides the ability to report and trend policy acceptance by users and rates of policy adoption. Symantec BindView Policy Manager 3.0 has the ability to track policy approval as well as manage requests for policy exceptions and clarifications.
Symantec BindView Policy Manager 3.0 reduces duplicative work by assessing compliance across regulations using one set of universal controls. For example, a single antivirus policy can help meet malicious software prevention control objectives within both HIPAA/ISO 17799 and SOX/CobiT. Customers are able to perform compliance analysis across regulations, without performing multiple assessments, by leveraging nearly 1500 control statements that provide pre-defined mappings between best practice frameworks and industry regulations. These control statements help translate vague regulatory and framework objectives into actionable policy, in order to reduce the costs associated with achieving compliance. Symantec BindView Policy Manager 3.0 supports FISMA, GLBA, HIPAA, SOX, CobiT, ISO 17799 and NIST SP800-53.
"As customers strive to try and meet the requirements of a multi-regulatory environment, Symantec is positioned to help them define, control and sustain a high level of compliance," said Sharon Ruckman, vice president, product management, Symantec Corp. "Symantec BindView Policy Manager 3.0 dramatically reduces the time and costs associated with managing the policy lifecycle, from policy creation to regulatory mapping and compliance assessment."
An ongoing problem businesses face today is effectively assessing compliance to written policy. Symantec BindView Policy Manager 3.0 provides proof of compliance by mapping written policy to compliance evidence feeds provided through integration with Symantec and third party infrastructure assessment software. In addition, the Symantec BindView Policy Manager 3.0 outlines specific steps for addressing non-compliant servers or workstations located anywhere in the world.
With the ability to collect information from multiple products, such as Symantec Sygate Enterprise Protection, NetBackup and Symantec AntiVirus Corporate Edition, Symantec BindView Policy Manager 3.0 dramatically reduces the need for internal auditors to go to multiple contacts within an organization to gather compliance information. Symantec BindView Policy Manager 3.0 allows IT auditors to focus only on what is required to meet compliance and not spend a lot of time on IT operations that require a greater level of information for systems management.
Licensing and Availability
Symantec BindView Policy Manager 3.0 and Symantec Compliance Manager 3.0 are scheduled to be available in March 2006 through Symantec's worldwide network of value-added resellers, distributors and systems integrators. Organizations seeking a reseller or distributor should contact Symantec at http://enterprisesecurity.symantec.com.
Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at www.symantec.com.
Symantec, the Symantec logo, VERITAS, and the VERITAS logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the United States and certain other countries. Additional company and product names may be trademarks or registered trademarks of the individual companies and are respectfully acknowledged.