SlideShare a Scribd company logo

Lumension LCRM - DSS @Vilnius 2010

Andris Soroka, profile picture
Andris Soroka

This document discusses challenges organizations face in managing compliance with various information security regulations. It proposes a standardized compliance and control framework called the Unified Compliance Framework (UCF) that would assess technical and procedural controls, integrate with security tools, automate compliance workflows, and provide consolidated compliance reporting. This would help organizations improve visibility into their risk posture, prioritize remediation efforts, and manage compliance over time more efficiently.

Technology
1 of 25
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
From Data Theft to … Compliance & Risk Management! PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
… Agenda 2 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
…Agenda 3 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
…just a simple pricelist ? 4 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
…active measures against card fraud 5 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
PCI DSS, PA DSS, 27001, CoBiT, NERC, Basel II, SOX, ... … … …
Mounting External Compliance Regulations 3 out 4 organizations must comply with two or PII Security Standards more regulations and corresponding audits. Sarbanes-Oxley, Section 404 43% of organizations comply with 3 or more PCI Data Security PCI Data Security Standards (DSS) Standards (DSS) regulations. Basel II Basel II SB1386 SB1386 SB1386 (CA Privacy Act) (CA Privacy Act) (CA Privacy Act) USA Patriot Act USA Patriot Act USA Patriot Act USA Patriot Act Gramm Leach Gramm Leach Gramm Leach Gramm Leach Gramm Leach Bliley (GLBA) Bliley (GLBA) Bliley (GLBA) Bliley (GLBA) Bliley (GLBA) 21CFR11 21CFR11 21CFR11 21CFR11 21CFR11 21CFR11 HIPAA HIPAA HIPAA HIPAA HIPAA HIPAA HIPAA EU Directive EU Directive EU Directive EU Directive EU Directive EU Directive EU Directive EU Directive *The Struggle to Manage Security Compliance for Multiple Regulations”..SecurityCompliance.com Time 7 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Today Organizations Spend 30-50% More On Compliance Than They Should Our IT Networks Were Never Designed With Compliance In Mind
Compliance & IT Risk Management Challenges ry ulato f Reg La ck o wledge Kno HIPAA Excel SOX Database Business Security Processes Policy PCI Manual IT Surveys Resources Password Length Special Characters Non Standardized Processes Functional Silos Disparate Data Collection 9 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Challenges in Compliance and Risk Management Business Interests Auditor Stakeholders
Data Collection
Standardized Compliance & Control Framework [UCF]
Assess Technical Controls: Automatically assess technical controls through integration to Lumension and 3rd party tools Procedural & Physical Controls: Utilize automated workflow based surveys 13 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Standardized & IT Risk Mgmt. Framework Regulation Authority Documents GLBA PCI FISMA HIPAA NHS NERC SOX ISO/IEC… Business Interests Corporate Policies Business Processes Revenue Streams Trade Secrets IT Assets Profile Risk Attributes Open to the Internet Contains Credit Card Information Contains Customer Data Applicable Controls Pass/Fail Regulation Assessment Password Length Data Encryption Power Save Corp-Policy ISO 27001 PCI NERC 100% 65% 65% 30%
Automation of Assessment Data Consolidated Assessment Data supports a holistic view of compliance and IT risk posture Technical Controls Procedural & Physical Controls Automated Connectors Automated Assessment Workflow Lumension Lumension 3rd Party Patch, Scan & Application & Web-Based Auditor / Analyst Products Surveys Attestation Configuration Device Control 15 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Connector … 16 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Connector … 17 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Connector … 18 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Connector … 19 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Remediate Remediate: Prioritize remediation efforts based on impact to overall organizational IT risk & compliance posture 20 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Manage Manage: Create operational and strategic visibility across compliance, IT risk postures 21 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Identify…and it starts again
Adaptation
Lumension Risk Manager - summary Give you better visibility into your compliance and risk posture. Help you save time & money in your security management process. 24 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
Global Headquarters 15880 N. Greenway-Hayden Loop Suite 100 Scottsdale, AZ 85260 1.888.725.7828 info@lumension.com thomas.wendrich@lumension.com www.lumension.com/itgrc-software

More Related Content

PDF
Lumension Security - State of Endpoint and Security DSS @Vilnius 2010
Andris Soroka
 
PDF
Sunera Business & Technology Risk Consulting
Sunera
 
PDF
Exemplo de política BYOD
Fernando Palma
 
PDF
Threat Detect Hipaa Compliance
tbeckwith
 
PDF
Richard Hogg & Dennis Waldron - #InfoGov17 - Cognitive Unified Governance & P...
ARMA International
 
PDF
GDPR Changing Mindset
NetworkIQ
 
PDF
Business Associate Assurance: What Covered Entities Need to Know
data brackets
 
PDF
The Definitive GDPR Guide for Event Professionals
Hubilo
 
Lumension Security - State of Endpoint and Security DSS @Vilnius 2010
Andris Soroka
 
Sunera Business & Technology Risk Consulting
Sunera
 
Exemplo de política BYOD
Fernando Palma
 
Threat Detect Hipaa Compliance
tbeckwith
 
Richard Hogg & Dennis Waldron - #InfoGov17 - Cognitive Unified Governance & P...
ARMA International
 
GDPR Changing Mindset
NetworkIQ
 
Business Associate Assurance: What Covered Entities Need to Know
data brackets
 
The Definitive GDPR Guide for Event Professionals
Hubilo
 

What's hot (6)

PDF
Panel Discussion: Small Steps for USGv6 a giant leap for Internet-kind? with ...
gogo6
 
PPTX
eDiscovery and Records Oh...My!
J. David Morris
 
PPTX
GDPR & digital strategy
Prof. Jacques Folon (Ph.D)
 
PDF
Meaningful Use Risk Analysis Webinar
data brackets
 
PPT
Data Security For Compliance 2
Flaskdata.io
 
PDF
Data Protection Brochure
Liliana50
 
Panel Discussion: Small Steps for USGv6 a giant leap for Internet-kind? with ...
gogo6
 
eDiscovery and Records Oh...My!
J. David Morris
 
GDPR & digital strategy
Prof. Jacques Folon (Ph.D)
 
Meaningful Use Risk Analysis Webinar
data brackets
 
Data Security For Compliance 2
Flaskdata.io
 
Data Protection Brochure
Liliana50
 
Ad

Similar to Lumension LCRM - DSS @Vilnius 2010 (20)

PDF
7 Mistakes of IT Security Compliance - and Steps to Avoid Them
Sasha Nunke
 
PDF
DSS ITSEC CONFERENCE - Lumension Security - Real Time Risk & Compliance Man...
Andris Soroka
 
PDF
Enterprise Security Architecture: From Access to Audit
Bob Rhubart
 
PDF
Sunera business & technology risk consulting services -slide share
Sunera
 
PDF
2007 issa journal-building a comprehensive security control framework
asundaram1
 
PPT
Automating Policy Compliance and IT Governance
Sasha Nunke
 
PPTX
Analyzing Your Government Contract Cybersecurity Compliance
Robert E Jones
 
PDF
Valiente Balancing It SecurityCompliance, Complexity & Cost
GuardEra Access Solutions, Inc.
 
PDF
Automating security policies (compliance) with Rudder
Jonathan Clarke
 
PPTX
Cybersecurity Compliance in Government Contracts
Robert E Jones
 
PPTX
Analyzing Your GovCon Cybersecurity Compliance
Robert E Jones
 
PPTX
Information Security Management System ISO/IEC 27001:2005
ControlCase
 
PDF
DSS ITSEC Conference 2012 - RISK & COMPLIANCE
Andris Soroka
 
PPTX
Vendor Management for PCI DSS; EI3PA; HIPAA and FFIEC
ControlCase
 
PPT
Cybersecurity exchange briefing oct 2012 v2
Naba Barkakati
 
PPTX
Big data security the perfect storm
Ulf Mattsson
 
PDF
Guide to hipaa compliance for containers
Abhishek Sood
 
PDF
Information Security It's All About Compliance
Dinesh O Bareja
 
PDF
Complying with Cybersecurity Regulations for IBM i Servers and Data
Precisely
 
PPTX
The IT Analysis Paralysis
PYA, P.C.
 
7 Mistakes of IT Security Compliance - and Steps to Avoid Them
Sasha Nunke
 
DSS ITSEC CONFERENCE - Lumension Security - Real Time Risk & Compliance Man...
Andris Soroka
 
Enterprise Security Architecture: From Access to Audit
Bob Rhubart
 
Sunera business & technology risk consulting services -slide share
Sunera
 
2007 issa journal-building a comprehensive security control framework
asundaram1
 
Automating Policy Compliance and IT Governance
Sasha Nunke
 
Analyzing Your Government Contract Cybersecurity Compliance
Robert E Jones
 
Valiente Balancing It SecurityCompliance, Complexity & Cost
GuardEra Access Solutions, Inc.
 
Automating security policies (compliance) with Rudder
Jonathan Clarke
 
Cybersecurity Compliance in Government Contracts
Robert E Jones
 
Analyzing Your GovCon Cybersecurity Compliance
Robert E Jones
 
Information Security Management System ISO/IEC 27001:2005
ControlCase
 
DSS ITSEC Conference 2012 - RISK & COMPLIANCE
Andris Soroka
 
Vendor Management for PCI DSS; EI3PA; HIPAA and FFIEC
ControlCase
 
Cybersecurity exchange briefing oct 2012 v2
Naba Barkakati
 
Big data security the perfect storm
Ulf Mattsson
 
Guide to hipaa compliance for containers
Abhishek Sood
 
Information Security It's All About Compliance
Dinesh O Bareja
 
Complying with Cybersecurity Regulations for IBM i Servers and Data
Precisely
 
The IT Analysis Paralysis
PYA, P.C.
 
Ad

More from Andris Soroka (20)

PPTX
Digitala Era 2017 - TransactPro - Normunds Aizstrauts - Maksājumu un finansu ...
Andris Soroka
 
PPTX
Digitala Era 2017 - Datu Valsts Inspekcija - Lauris Linabergs - Vispārīgā dau...
Andris Soroka
 
PPT
Digitala Era 2017 - PMLP - Vilnis Vītoliņš - Gaisa kuģu pasažieru datu apstrā...
Andris Soroka
 
PPTX
Digitala Era 2017 - BOD LAW - Līva Aleksejeva - LIELIE DATI un personas datu ...
Andris Soroka
 
PPTX
Digitala Era 2017 - Spridzans Law Office - Anna Vladimirova Krykova - Mobilo ...
Andris Soroka
 
PDF
Digitala Era 2017 - ZAB “BULLET” - Ivo Krievs - Vai uz valsti attiecināmi cit...
Andris Soroka
 
PPTX
Digitala Era 2017 - LSPDSA - Arnis Puksts - Datu aizsardzības speciālists (DPO)
Andris Soroka
 
PPTX
Digitala Era 2017 - IIZI - Lauris Kļaviņš - GDPR - Kādus izdevumus un riskus ...
Andris Soroka
 
PPTX
Digitala Era 2017 - E-Risinajumi - Māris Ruķers - Vai ar vienu datu aizsardzī...
Andris Soroka
 
PPTX
Digitala Era 2017 - Gints Puškundzis - Personas datu apstrādes līgumi
Andris Soroka
 
PDF
Digitala Era 2017 - DatuAizsardziba.LV - Agnese Boboviča - Datu aizsardzības ...
Andris Soroka
 
PPTX
Digitala Era 2017 - NotAKey - Janis Graubins - Mobile technologies for single...
Andris Soroka
 
PPTX
Digitala Era 2017 - Hermitage Solutions - Gatis Kaušs - Clearswift - Komunikā...
Andris Soroka
 
PDF
Digitala Era 2017 - Digital Mind - Leons Mednis - eDiscovery risinājums GDPR ...
Andris Soroka
 
PPTX
Digitala Era 2017 - ALSO - Artjoms Krūmiņš - Personas datu regulas (EU GDPR) ...
Andris Soroka
 
PPTX
Digitala Era 2017 - ZAB Skopiņa & Azanda - Jūlija Terjuhana - Tiesības uz dat...
Andris Soroka
 
PDF
Digitala Era 2017 - IT Centrs - Agris Krusts - Latvijas iedzīvotāju digitālo ...
Andris Soroka
 
PPTX
Digitala Era 2017 - DSS.LV - Arturs Filatovs - Datu Aizsardzības Tehnoloģiskā...
Andris Soroka
 
PPTX
Digitala Era 2017 - DSS.LV - Arturs Filatovs - Mobilitāte un Personas Datu Dr...
Andris Soroka
 
PPTX
Digitala Era 2017 - DSS.LV - Andris Soroka - Personas datu regulas tehnoloģis...
Andris Soroka
 
Digitala Era 2017 - TransactPro - Normunds Aizstrauts - Maksājumu un finansu ...
Andris Soroka
 
Digitala Era 2017 - Datu Valsts Inspekcija - Lauris Linabergs - Vispārīgā dau...
Andris Soroka
 
Digitala Era 2017 - PMLP - Vilnis Vītoliņš - Gaisa kuģu pasažieru datu apstrā...
Andris Soroka
 
Digitala Era 2017 - BOD LAW - Līva Aleksejeva - LIELIE DATI un personas datu ...
Andris Soroka
 
Digitala Era 2017 - Spridzans Law Office - Anna Vladimirova Krykova - Mobilo ...
Andris Soroka
 
Digitala Era 2017 - ZAB “BULLET” - Ivo Krievs - Vai uz valsti attiecināmi cit...
Andris Soroka
 
Digitala Era 2017 - LSPDSA - Arnis Puksts - Datu aizsardzības speciālists (DPO)
Andris Soroka
 
Digitala Era 2017 - IIZI - Lauris Kļaviņš - GDPR - Kādus izdevumus un riskus ...
Andris Soroka
 
Digitala Era 2017 - E-Risinajumi - Māris Ruķers - Vai ar vienu datu aizsardzī...
Andris Soroka
 
Digitala Era 2017 - Gints Puškundzis - Personas datu apstrādes līgumi
Andris Soroka
 
Digitala Era 2017 - DatuAizsardziba.LV - Agnese Boboviča - Datu aizsardzības ...
Andris Soroka
 
Digitala Era 2017 - NotAKey - Janis Graubins - Mobile technologies for single...
Andris Soroka
 
Digitala Era 2017 - Hermitage Solutions - Gatis Kaušs - Clearswift - Komunikā...
Andris Soroka
 
Digitala Era 2017 - Digital Mind - Leons Mednis - eDiscovery risinājums GDPR ...
Andris Soroka
 
Digitala Era 2017 - ALSO - Artjoms Krūmiņš - Personas datu regulas (EU GDPR) ...
Andris Soroka
 
Digitala Era 2017 - ZAB Skopiņa & Azanda - Jūlija Terjuhana - Tiesības uz dat...
Andris Soroka
 
Digitala Era 2017 - IT Centrs - Agris Krusts - Latvijas iedzīvotāju digitālo ...
Andris Soroka
 
Digitala Era 2017 - DSS.LV - Arturs Filatovs - Datu Aizsardzības Tehnoloģiskā...
Andris Soroka
 
Digitala Era 2017 - DSS.LV - Arturs Filatovs - Mobilitāte un Personas Datu Dr...
Andris Soroka
 
Digitala Era 2017 - DSS.LV - Andris Soroka - Personas datu regulas tehnoloģis...
Andris Soroka
 

Recently uploaded (20)

PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
ReZa AdineH
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
KodekX | Application Modernization Development
KodekX
 
Building Integrated photovoltaic BIPV_UPV.pdf
SandeepSingh286037
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Cloud computing and distributed systems.
kkkkkhan
 
Network Security Unit 5.pdf for BCA BBA.
Serpent6
 

Lumension LCRM - DSS @Vilnius 2010

  • 1. From Data Theft to … Compliance & Risk Management! PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 2. … Agenda 2 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 3. …Agenda 3 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 4. …just a simple pricelist ? 4 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 5. …active measures against card fraud 5 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 6. PCI DSS, PA DSS, 27001, CoBiT, NERC, Basel II, SOX, ... … … …
  • 7. Mounting External Compliance Regulations 3 out 4 organizations must comply with two or PII Security Standards more regulations and corresponding audits. Sarbanes-Oxley, Section 404 43% of organizations comply with 3 or more PCI Data Security PCI Data Security Standards (DSS) Standards (DSS) regulations. Basel II Basel II SB1386 SB1386 SB1386 (CA Privacy Act) (CA Privacy Act) (CA Privacy Act) USA Patriot Act USA Patriot Act USA Patriot Act USA Patriot Act Gramm Leach Gramm Leach Gramm Leach Gramm Leach Gramm Leach Bliley (GLBA) Bliley (GLBA) Bliley (GLBA) Bliley (GLBA) Bliley (GLBA) 21CFR11 21CFR11 21CFR11 21CFR11 21CFR11 21CFR11 HIPAA HIPAA HIPAA HIPAA HIPAA HIPAA HIPAA EU Directive EU Directive EU Directive EU Directive EU Directive EU Directive EU Directive EU Directive *The Struggle to Manage Security Compliance for Multiple Regulations”..SecurityCompliance.com Time 7 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 8. Today Organizations Spend 30-50% More On Compliance Than They Should Our IT Networks Were Never Designed With Compliance In Mind
  • 9. Compliance & IT Risk Management Challenges ry ulato f Reg La ck o wledge Kno HIPAA Excel SOX Database Business Security Processes Policy PCI Manual IT Surveys Resources Password Length Special Characters Non Standardized Processes Functional Silos Disparate Data Collection 9 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 10. Challenges in Compliance and Risk Management Business Interests Auditor Stakeholders
  • 12. Standardized Compliance & Control Framework [UCF]
  • 13. Assess Technical Controls: Automatically assess technical controls through integration to Lumension and 3rd party tools Procedural & Physical Controls: Utilize automated workflow based surveys 13 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 14. Standardized & IT Risk Mgmt. Framework Regulation Authority Documents GLBA PCI FISMA HIPAA NHS NERC SOX ISO/IEC… Business Interests Corporate Policies Business Processes Revenue Streams Trade Secrets IT Assets Profile Risk Attributes Open to the Internet Contains Credit Card Information Contains Customer Data Applicable Controls Pass/Fail Regulation Assessment Password Length Data Encryption Power Save Corp-Policy ISO 27001 PCI NERC 100% 65% 65% 30%
  • 15. Automation of Assessment Data Consolidated Assessment Data supports a holistic view of compliance and IT risk posture Technical Controls Procedural & Physical Controls Automated Connectors Automated Assessment Workflow Lumension Lumension 3rd Party Patch, Scan & Application & Web-Based Auditor / Analyst Products Surveys Attestation Configuration Device Control 15 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 16. Connector … 16 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 17. Connector … 17 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 18. Connector … 18 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 19. Connector … 19 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 20. Remediate Remediate: Prioritize remediation efforts based on impact to overall organizational IT risk & compliance posture 20 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 21. Manage Manage: Create operational and strategic visibility across compliance, IT risk postures 21 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 24. Lumension Risk Manager - summary Give you better visibility into your compliance and risk posture. Help you save time & money in your security management process. 24 PROPRIETARY & CONFIDENTIAL - NOT FOR PUBLIC DISTRIBUTION
  • 25. Global Headquarters 15880 N. Greenway-Hayden Loop Suite 100 Scottsdale, AZ 85260 1.888.725.7828 info@lumension.com thomas.wendrich@lumension.com www.lumension.com/itgrc-software