Feeds

Tivoli integrates compliance management

Automated tool contrast policies with behaviour

Internet Security Threat Report 2014

IBM has finally finished digesting Consul InSight, the risk management software that it bought last December, and has re-released it in expanded form as Tivoli Compliance Insight Manager.

Now linked into other Tivoli products, such as Security Operations Manager, Identity Manager and Access Manager, the updated software allows companies to track, report and investigate non-compliant behaviour across the enterprise by automatically comparing user activity to defined policies, Big Blue claimed.

TCIM's integration with the other Tivoli elements now allows it to report on and audit the actions of privileged users - for example, taking detailed notes when a system administrator changes a user's role or authorisation level. It also lets it import user and security logs and analyse them for long-term trends, and recognise and respond to attacks in real-time.

The software includes a compliance dashboard and a number of standard regulatory audit and compliance reports. Custom reports can be created and distributed via its policy and report definition mechanisms.

Due to go on sale next Friday, TCIM also supports the needs of auditors by translating captured security data into a common format that can be understood even if the auditor is not intimately familiar with the area of the business where is was collected, IBM said.

Kristin Lovejoy, IBM's head governance and risk management strategist, claimed that the only way to get business value from compliance management was to automate and consolidate it. She quoted a Gartner estimate that using separate tools for each regulatory challenge could cost ten times as much as an integrated approach to compliance.

"Companies today are dealing with an increasingly complex regulatory environment, along with growing IT environments and increasing demands to run secure and highly resilient businesses," she said. She added that TCIM "provides a valuable, automated management tool for improved organisational efficiency and fast response to security and compliance violations."®

Security for virtualized datacentres

More from The Register

next story
Microsoft WINDOWS 10: Seven ATE Nine. Or Eight did really
Windows NEIN skipped, tech preview due out on Wednesday
Business is back, baby! Hasta la VISTA, Win 8... Oh, yeah, Windows 9
Forget touchscreen millennials, Microsoft goes for mouse crowd
Apple: SO sorry for the iOS 8.0.1 UPDATE BUNGLE HORROR
Apple kills 'upgrade'. Hey, Microsoft. You sure you want to be like these guys?
ARM gives Internet of Things a piece of its mind – the Cortex-M7
32-bit core packs some DSP for VIP IoT CPU LOL
Microsoft on the Threshold of a new name for Windows next week
Rebranded OS reportedly set to be flung open by Redmond
Lotus Notes inventor Ozzie invents app to talk to people on your phone
Imagine that. Startup floats with voice collab app for Win iPhone
'Google is NOT the gatekeeper to the web, as some claim'
Plus: 'Pretty sure iOS 8.0.2 will just turn the iPhone into a fax machine'
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.