Feeds

Tivoli integrates compliance management

Automated tool contrast policies with behaviour

Bridging the IT gap between rising business demands and ageing tools

IBM has finally finished digesting Consul InSight, the risk management software that it bought last December, and has re-released it in expanded form as Tivoli Compliance Insight Manager.

Now linked into other Tivoli products, such as Security Operations Manager, Identity Manager and Access Manager, the updated software allows companies to track, report and investigate non-compliant behaviour across the enterprise by automatically comparing user activity to defined policies, Big Blue claimed.

TCIM's integration with the other Tivoli elements now allows it to report on and audit the actions of privileged users - for example, taking detailed notes when a system administrator changes a user's role or authorisation level. It also lets it import user and security logs and analyse them for long-term trends, and recognise and respond to attacks in real-time.

The software includes a compliance dashboard and a number of standard regulatory audit and compliance reports. Custom reports can be created and distributed via its policy and report definition mechanisms.

Due to go on sale next Friday, TCIM also supports the needs of auditors by translating captured security data into a common format that can be understood even if the auditor is not intimately familiar with the area of the business where is was collected, IBM said.

Kristin Lovejoy, IBM's head governance and risk management strategist, claimed that the only way to get business value from compliance management was to automate and consolidate it. She quoted a Gartner estimate that using separate tools for each regulatory challenge could cost ten times as much as an integrated approach to compliance.

"Companies today are dealing with an increasingly complex regulatory environment, along with growing IT environments and increasing demands to run secure and highly resilient businesses," she said. She added that TCIM "provides a valuable, automated management tool for improved organisational efficiency and fast response to security and compliance violations."®

Seven Steps to Software Security

More from The Register

next story
LibreSSL crypto library leaps from OpenBSD to Linux, OS X, more
First cross-platform version of cleaned-up OpenSSL fork
Think Google Glass is creepy? Wait until it READS YOUR MIND
Startup penetrates the mind of Glassholes
Bezos house 'on FIRE': Amazon in-app kiddy megabuck charge storm
FTC prepares boot for firm's ass in lawsuit
I've got 99 problems, but a Facebook boycott ain't one
If you're havin' Zuck problems, I feel bad for you son
Victim of Tor-hidden revenge smut site sues Tor Project developers
But EFF lawyer says deep-web team 'no more liable' than web server makers
Microsoft wants to lure biz users with fondleable Windows 8.1 'Apportals'
Custom Start Screens lump enterprise apps and data in one place
Chrome Remote Desktop adds Linux to supported OS list
Drive Debian from the confines of a Chromebook
Google's lounge room invasion advances with Chromecast upgrade
Your tellie is about to mirror your Android
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Maximizing your infrastructure through virtualization
Virtualization continues to be one of the most effective ways to consolidate, reduce cost, and make data centers more efficient.
Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.