SAN FRANCISCO -- Symantec Vision 2006 -- May 8, 2006 -- Symantec Corp. (NASDAQ: SYMC) today announced its IT Compliance solution, a broad set of security and availability products and services that allow customers to reduce the cost of compliance. By offering the necessary tools to audit and examine the control environment on an ongoing basis, Symantec’s IT Compliance solution allows customers to effectively govern their compliance efforts. IT compliance is an ongoing process, not a one time event, which requires automation to reduce cost and inefficiencies.
According to survey results from Securitycompliance.com, the most pressing regulatory mandates, those governing data privacy and protection, are impacting 60 percent of organizations from small businesses to large global enterprises.
“More than 80 percent of companies surveyed agree that compliance is not sustainable without an automated solution to manage the documentation and processes, including related tasks such as evaluating and running IT controls and event logs,” according to an IDC 2005 Multi-client Study entitled “Priorities for Compliance” by Vivian Tero, senior research analyst, compliance infrastructure.
Symantec’s portfolio allows customers to reduce the cost of compliance by automating several aspects of IT compliance including: policy management, IT controls assessment, collection of data from disparate IT control points, policy enforcement, and documentation retention. Symantec automates the collection of data from disparate IT control points, including security and availability products, providing a consolidated view of IT compliance within customers’ organizations. Symantec reduces the need for customers to go to multiple data owners and managers for this information. The information is collected in a consistent, sustainable manner, thus reducing inaccuracies in reporting.
In order to further reduce time and costs associated with sustaining compliance, Symantec centralizes information across IT compliance efforts to improve decision-making and prove ongoing compliance with confidence. Symantec is also the only company that, through a single assessment, automates compliance management by integrating multiple data feeds and generating reports that measure and demonstrate compliance across multiple regulations, standards, and guidelines, such as Sarbanes Oxley, HIPAA and PCI.
“Safeguarding patient medical data is a critical concern for any healthcare organization. Symantec helps us ensure the confidentiality, integrity, and availability of vital patient information, while enabling the compliance of information systems with internal security policies and HIPAA regulations,” said Bob Burritt, who directs networking and technology for Kettering Medical Center Network. “By streamlining compliance throughout our entire hospital network and implementing Symantec’s best practices within our IT environment we have met our number one prevention issue—security—through the fastest and most cost effective means possible.”
The Symantec IT Compliance solution offers customizable products and services designed to help customers define, control, and govern their IT compliance initiatives. Compliance efforts are defined by understanding business requirements, outlining control objectives, and assessing risk. Policies aligned with business objectives are automatically mapped across multiple regulations, frameworks, and standards, they are then distributed to users for acceptance.
In order to provide additional reduction in time and costs associated with determining compliance to policies, Symantec automates the testing of IT controls and integrates multiple data sources. Data is collected in a consistent, sustainable manner that reduces inaccuracies in reporting from Symantec and third-party products including: information retention, access control, endpoint compliance, configuration, and continuity. Symantec also provides the workflow and tools necessary to remediate and enforce compliance.
“Adhering to strict compliance issues is no small task when accommodating constant demands for instant access and analysis of current and historical data,” said Chris Kadwill, ICT manager, Luton Borough Council. “Symantec’s technology helps relieve the burden of electronic data management and provides seamless delivery of secure and reliable public services in the most efficient environment. With Symantec’s help we have been able to assess our regulatory compliance and security position, fine-tune our policies and procedures, and ensure the safety and availability of our information.”
Symantec’s IT Compliance solution allows customers to author and publish reports to efficiently demonstrate due care of compliance. Furthermore, customers are provided with recommendations for improvements to the control environment. Symantec delivers risk-based prioritization and actionable remediation guidance with insights gathered through the world’s largest security intelligence network.
“Symantec clearly understands the many challenges customers are facing in trying to achieve and sustain a high level of IT compliance, said Arshad Matin, vice president, compliance and security management, Symantec Corp. “Overtime we have put together a set of offerings to address the issues with managing IT compliance in a thorough and continuous fashion.”
The Symantec IT Compliance solution set includes the following products designed to help customers define, control and govern their IT environments: Symantec BindView Policy Manager, Control Compliance Suite, Security Information Manager, Enterprise Vault, IM Manager, Symantec Enterprise Protection, Symantec On-Demand Protection, Symantec Sygate Network Access Control, Symantec Client Security, NetBackup.
Symantec also provides a full spectrum of advisory and enablement services to help customers establish and maintain compliance with internal and external requirements. Symantec’s managed security services and consulting services, which include regulatory compliance services for multiple industry and governmental frameworks and regulations, help customers build an end-to-end program for creating, managing, and reporting compliance. These services also support organizational needs for effective management of IT risk.
Licensing and Availability
Symantec’s IT Compliance solution set is available through Symantec’s network of authorized value-added resellers, distributors and systems integrators. Organizations seeking a reseller or distributor should contact Symantec at http://locator.symantec.com.
Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at www.symantec.com.
NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, please visit the Symantec News Room at www.symantec.com/news. All prices noted are in U.S. dollars and are valid only in the United States.
Symantec and the Symantec Logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the U.S. and other countries. Other names may be trademarks of their respective owners.