SlideShare a Scribd company logo

Agiliance RiskVision Streamlines IT Risk

A
agiliancecommunity

Agiliance RiskVision is a risk management and compliance automation platform that streamlines IT risk management and reduces compliance costs. It provides visibility into risks across the enterprise and helps prioritize the most critical assets. The platform automates assessments, tracks remediation efforts, and delivers dynamic risk modeling to support business decisions. It also provides executives with accurate and up-to-date transparency into risk and compliance status.

TechnologyBusinessEconomy & Finance
1 of 6
Download to read offline
Agiliance RiskVision 4.0 “Not only did the IT Risk Management and Compliance Automation Platform Agiliance solution alleviate some immediate pain through automation of the seemingly never-ending list of compliance assessments, I believe it will ultimately help us implement a proactive and cost effective risk management strategy.” Agiliance RiskVision™ is a complete IT • Improves risk management efforts: risk and compliance management system Agiliance RiskVision supports an — Shane Fuller, designed to help organizations keep pace “always-on” proactive approach to risk Information Security with the expanding requirements of IT management that helps companies gain & Compliance Manager, compliance and operate at their highest enterprise-wide visibility into risks and RSA Insurance level of performance. With powerful risk reliably report on current IT risk exposure. management and automation capabilities, • Supports effective governance: companies can reduce compliance related Agiliance RiskVision allows organizations costs by up to 70% and improve oversight to measure and report on the of IT compliance initiatives. Our integrated IT effectiveness of risk and compliance risk and compliance management platform initiatives, better align IT strategy with is being used by some of the world’s largest strategic business goals, optimize companies to solve their most pressing existing security investments and IT issues including business continuity resource usage. This combined with management, vendor risk management advanced risk methodologies and and compliance management. dynamic modeling allows businesses to make risk-informed strategic decisions. SOLUTION BENEFITS • Rapid deployment and long term • Delivers real cost savings: Agiliance ROI: Agiliance RiskVision was built from RiskVision supports repeatable, the ground up as a standards-based sustainable controls monitoring, testing product that supports the extensibility, and reporting processes to reduce reliability and usability requirements compliance related costs by up to 70%. of today’s enterprise. The solution • Streamlines existing compliance accelerates time-to-deployment with processes: The product helps businesses advanced configurability features and reduce time to compliance by up to extensive interoperability with third- 80% and maintain ongoing compliance party applications. with mandates without invasive and expensive overhauls of IT infrastructure.
BUSINESS CHALLENGE helps businesses strategically manage Successfully balancing today’s risk compliance demands and allocate IT budget “Agiliance RiskVision management, cost reduction and compliance and resources based on business objectives. equation can be a difficult feat. As security is purpose-built from incidents and new regulations continue to AGILIANCE RISKVISION OVERVIEW the ground up to grow in number and complexity, businesses Agiliance RiskVision arms companies with an what it is intended to often find themselves diverting precious staff efficient, repeatable and continuous process time and operating budget away from growth for IT compliance and risk management. It do – provide IT-GRC supporting initiatives to reactive activities such provides complete visibility into current risk management. Since it as regulatory audits. status and delivers the accurate intelligence and analytics required to ensure informed is not a suite of glued As demands to control the bottom line business decisions based on risk posture can together products, it increase and regulators become even more be made with ease and confidence. does not need to be aggressive, over-investing in compliance- related programs can negatively impact a RISK MANAGEMENT DATABASE integrated to work. company’s ability to fund future growth Agiliance RiskVision is the only product From the beginning, initiatives. For businesses that want to on the market that features a unified sophisticated risk break out of the current inflated threat and Risk Management Database (RMDB) that compliance-driven spending model to develop automatically aggregates and correlates data intelligence and a more resilient and cost-effective IT risk and controls across systems, people and management went management process, Agiliance RiskVision processes as well as controls from standards, into the product.” — Peter Stephenson Senior Editor SC Magazine
frameworks, policies and regulations – Controls are automatically mapped to entities, out-of-the-box without the need for whether people, processes or systems, based “Agiliance comes custom development – to serve as a single on profiles. By providing a mapping of all authoritative source of IT risk from IT and policies, controls and regulatory requirements, out on top in terms of non-IT entities. Agiliance RiskVision automatically rationalizes risk functionality that controls across multiple regulations, thereby provides, out of the box, Provides authoritative source of IT risk. reducing overall effort and cost required to Agiliance RiskVision collects risk data from meet regulatory requirements. Unlike security the most standards- non-IT entities like people, vendors, and automation point solutions or process- based methodologies processes using web-based e-surveys and related GRC applications, Agiliance RiskVision automatically imports risk data from a wide combines data and test results from both IT for analyzing IT risks.” range of IT, security and compliance assets. and non-IT entities to dissolve organizational — Marc Othersen silos and provide an authoritative single view Senior Analyst Streamlines compliance efforts across of IT risk across the enterprise. Forrester Research multiple regulations and best practices. Agiliance RiskVision ships with a content-rich Common Control Framework that premaps controls across over 30 regulations and industry mandates (e.g., SOX, HIPAA, PCI, GLBA, and NERC), many standard frameworks (e.g., ISO 17799/27001/27002, CobiT, and NIST SP800-53/SP800-66), 10,000+ controls and sub-controls, and 200+ key risks as well ANALySIS AND WORKFLOW ENGINE as best practices, threats, vulnerabilities and Agiliance RiskVision supports an “always-on” integration with live threat data feeds. proactive approach to risk management that helps companies gain enterprise-wide visibility into IT risks and reliably report on current IT risk exposure by transforming and linking entities, regulations, policies and controls to risk scores. With the ability to accurately monitor and report policy and compliance- related violations and track remediation efforts, business can proactively manage corporate risk. Delivers centralized policy management. Agiliance RiskVision enables IT, risk and compliance managers to create new policies, promote policy awareness, manage policy exceptions, assess policy compliance, and view risks that may arise from non-compliance. Policies are linked to controls and can be linked to risk as well – allowing analysts to view risk of non-compliance. Complete
policy authoring, review, approval and assessment projects. E-surveys can be dissemination capabilities based on delegated to teams or individuals and the “We’re working with multi-stage workflow are built-in to system assures that the right people are the application. The product includes responding to the surveys. The solution Agiliance because awareness campaigns that can be used to enables multiple assessment projects to their product met promote, communicate and test employees’ run simultaneously and scales to conduct our key criteria understanding of policies. assessments on tens of thousands of entities. which include easy Provides a complete closed loop risk integration with our management system. The product company’s existing provides continuous visibility into the monitoring, management and reporting of applications.” risks and controls across departmental and — Oliver Eckel, geographical boundaries to help eliminate Head of silos. Agiliance RiskVision calculates current Corporate Security, risks, inherent risks and remedial risks with bwin Interactive operational risk scoring of controls down to Entertainment AG the sub-control level across 10,000+ controls in the Common Control Framework. The product supports multiple risk methodologies including ISO 27005, ISO 31000, and COSO Automates Assessments. Agiliance ERM and risk assessment types, such as, IT RiskVision streamlines assessments using risk, ERM, KRI trending and threat models web-based e-survey questionnaires and so that companies can anticipate potential automated workflow with the ability to threats and react appropriately. import findings in multiple formats and from multiple sources. E-survey questions are automatically generated based on controls, delivered and tracked based on configurable workflow to help avoid dead-ends and project delays. Survey responders can attach evidence in the form of csv, pdf, excel or word files (e.g. structured files containing activity or time stamp data from systems such as physical access control, building management or fire protection systems for data centers) for use by auditors. Powerful project wizards allow assessment projects to be quickly initiated and easily configured The product automatically prioritizes IT using pre-defined workflows or previous assets such as servers, applications and network devices that need to be monitored for risk so that the most critical assets can be addressed first, e.g., those containing personal identification information, medical records or credit card information. Using
this intelligence, decision makers can be confident that budget is being wisely allocated “Agiliance is one of towards the most critical assets – eliminating the solutions we use overspending on shotgun approaches that may add unwarranted controls across the in Arizona as part of entire IT environment. our overall effort to To provide end-to-end risk management, take an “always on”, Agiliance RiskVision automates remediation proactive stance to and mitigation workflows with a native security and risk so that ticketing system and integration with internal ticketing systems, like BMC Remedy and HP we can stay ahead of Service Center, and ensures that remediation, evolving threats and exception handling and delegation to teams is Delivers dynamic risk modeling to support handled in a efficient manner. informed business decisions. Agiliance preserve confidence in RiskVision delivers powerful “What-If” risk government services.” modeling capabilities to study the effects of applying specific controls before changes — Fred Sargeson are made. With roles-based views, managers General Manager NIC- State of Arizona across the enterprise can assess the impact of various risk mitigation plans including the cost of downtime and the cost of replacing the asset to make real-time decisions about INTELLIGENCE CENTER remediation versus accepting or transferring With intuitive risk performance dashboards the risk. Agiliance RiskVision allows risk and powerful analytic tools, Agiliance parameters to be expressed in dollar values, RiskVision allows companies to pull together making it easy to compare the cost of controls the interdependent disciplines of security, to their effectiveness in mitigating the compliance and risk to establish more corresponding risks. This, in combination with accountable and effective IT governance powerful trending tools, allows executives to without the associated high costs and easily track and measure the effectiveness of inefficiencies of disparate programs. Agiliance risk and compliance programs over time. RiskVision helps companies evolve their risk management processes by providing current Ships with over 150 standard templates to and accurate visibility into how IT risk affects document compliance and communicate the entire organization and by enabling rapid, risks. The built in reporting capabilities help informed decision making on allocation of IT companies to efficiently meet regulatory security investments and risk posture to ensure and executive reporting requirements. With business resiliency. By combining advanced customization features and real-time data- quantitative and qualitative risk analysis feeds, users can create up to the minute techniques, customers have the degree of content-rich reports for auditors and granularity needed to make informed risk- executives within a matter of minutes. The based decisions. product allows users to report on compliance
InnovatIve status, risk status, remediation status and requirements of today’s enterprise. Agiliance Modern business ROI information based on exposure, solutions are highly configurable and easy to archItecture rate of occurrence and loss expectancy. integrate so that companies can realize time • n-Tier web applications utilizing to value in 45 days or less. Web 2.0 and Ajax capabilities • Apache and Java stack, cross- Provides executives with accurate and up- platform, enterprise scalable to-date risk and compliance transparency. Our security automation and enterprise • Web services interface for connectors, reports and dashboards By normalizing and combining risk from non- software acumen allows us to offer the compliance with regulations and standards, IT capabilities customers need to support long- connectIvItY security and system automation gaps as well term risk management goals and realize up Configuration Management as process related risk, Agiliance RiskVision to a 70% reduction in compliance related Systems consolidates risk data into dashboard views costs. By offering market-ready “quick-start” Altiris SecurityExpressions (Symantec) Big Fix that provide executives transparency into solutions, Agiliance helps companies progress BMC Atrium current compliance and risk status. Using from first phase compliance projects through NetIQ SCM roles-based views, risks can be effectively to robust and strategic IT risk management Symantec ESM communicated across the organization using programs with ease and confidence. Vulnerability Scanners the intuitive web-based interface to display eEye Retina HP WebInspect risk and compliance results in summary views With the industry’s most powerful risk IBM Rational AppScan by organization or business unit. management and automation platform, ISS SiteProtector Agiliance is the company that global 2000 McAfee Foundstone nCircle IP360 WHy AGILIANCE companies trust to solve their most pressing Nessus – Tenable As the costs and complexity of IT risk and risk issues including business continuity QualysGuard compliance management continues to rise, management, vendor risk management and Skybox Agiliance believes that customers deserve compliance management. Remediation Management high performance solutions that completely Best Practical Solutions RTIR BMC Remedy address the IT risk and compliance demands HP Service Center (Peregrine) of today and scale to meet future challenges. Security Information Agiliance RiskVision was built from the ground Managers (SIM/SIEM) up as an integrated IT risk and compliance Arcsight Enterprise Security Manager Cisco MARS management platform that supports NetIQ Security Manager the automation and risk management Novell Sentinel RSA enVision Integrated Security Managers McAfee ePolicy Orchestrator RSA DLP Enterprise Suite (EMC) Identity Management CA SiteMinder IBM Tivoli Identity Manager ABOUT AGILIANCE Oracle Identity Manager Agiliance offers highly-automated IT risk and compliance management software products designed to Sun Identity Manager help organizations thrive in the face of mounting pressures to manage and balance risk, compliance and Automated Controls IT budgets. Global 2000 companies in the financial, healthcare, energy, government and technology Approva BizRights Platform industries are leveraging the power of Agiliance software to cut compliance costs and to provide decision Oracle Enterprise Manager makers with the current and accurate intelligence they need to better understand how IT risk affects their SAP GRC Access Control (Virsa) entire organization. Agiliance, Inc. 1732 North First Street p: 408.200.0400 www.agiliance.com © 2008 Agiliance, Inc. Suite 200 f: 408.200.0401 info@agiliance.com All rights reserved. San Jose, CA 95112

Recommended

Security Maturity Model
Security Maturity ModelSecurity Maturity Model
Security Maturity ModelConferencias FIST
 
Information Security Maturity Model
Information Security Maturity ModelInformation Security Maturity Model
Information Security Maturity ModelCSCJournals
 
Agiliance Wp Key Steps
Agiliance Wp Key StepsAgiliance Wp Key Steps
Agiliance Wp Key Stepsagiliancecommunity
 
7 Steps To Developing A Cloud Security Plan
7 Steps To Developing A Cloud Security Plan7 Steps To Developing A Cloud Security Plan
7 Steps To Developing A Cloud Security PlanEnvision Technology Advisors
 
Security Maturity Assessment
Security Maturity AssessmentSecurity Maturity Assessment
Security Maturity AssessmentClaude Baudoin
 
MCGlobalTech Commercial Cybersecurity Capability Statement
MCGlobalTech Commercial Cybersecurity Capability StatementMCGlobalTech Commercial Cybersecurity Capability Statement
MCGlobalTech Commercial Cybersecurity Capability StatementWilliam McBorrough
 
Developing Metrics for Information Security Governance
Developing Metrics for Information Security GovernanceDeveloping Metrics for Information Security Governance
Developing Metrics for Information Security Governancedigitallibrary
 
2018 State of Cyber Resilience Insurance
2018 State of Cyber Resilience Insurance2018 State of Cyber Resilience Insurance
2018 State of Cyber Resilience InsuranceAccenture Insurance
 

Recommended

Security Maturity Model
Security Maturity ModelSecurity Maturity Model
Security Maturity ModelConferencias FIST
 
Information Security Maturity Model
Information Security Maturity ModelInformation Security Maturity Model
Information Security Maturity ModelCSCJournals
 
Agiliance Wp Key Steps
Agiliance Wp Key StepsAgiliance Wp Key Steps
Agiliance Wp Key Stepsagiliancecommunity
 
7 Steps To Developing A Cloud Security Plan
7 Steps To Developing A Cloud Security Plan7 Steps To Developing A Cloud Security Plan
7 Steps To Developing A Cloud Security PlanEnvision Technology Advisors
 
Security Maturity Assessment
Security Maturity AssessmentSecurity Maturity Assessment
Security Maturity AssessmentClaude Baudoin
 
MCGlobalTech Commercial Cybersecurity Capability Statement
MCGlobalTech Commercial Cybersecurity Capability StatementMCGlobalTech Commercial Cybersecurity Capability Statement
MCGlobalTech Commercial Cybersecurity Capability StatementWilliam McBorrough
 
Developing Metrics for Information Security Governance
Developing Metrics for Information Security GovernanceDeveloping Metrics for Information Security Governance
Developing Metrics for Information Security Governancedigitallibrary
 
2018 State of Cyber Resilience Insurance
2018 State of Cyber Resilience Insurance2018 State of Cyber Resilience Insurance
2018 State of Cyber Resilience InsuranceAccenture Insurance
 
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...Redspin, Inc.
 
Real Time Risk Management
Real Time Risk ManagementReal Time Risk Management
Real Time Risk ManagementMike Popham MBA PhD CPEng FRSA
 
Cyber risk management-white-paper-v8 (2) 2015
Cyber risk management-white-paper-v8 (2) 2015Cyber risk management-white-paper-v8 (2) 2015
Cyber risk management-white-paper-v8 (2) 2015Accounting_Whitepapers
 
Xero Risk Product Presentation V3.2
Xero Risk Product Presentation V3.2Xero Risk Product Presentation V3.2
Xero Risk Product Presentation V3.2Carl Booth
 
The security risk management guide
The security risk management guideThe security risk management guide
The security risk management guideSergey Erohin
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management MetricStream Inc
 
TOGAF 9 - Security Architecture Ver1 0
TOGAF 9 - Security Architecture Ver1 0TOGAF 9 - Security Architecture Ver1 0
TOGAF 9 - Security Architecture Ver1 0Maganathin Veeraragaloo
 
Top 10 IT Security Issues 2011
Top 10 IT Security Issues 2011Top 10 IT Security Issues 2011
Top 10 IT Security Issues 2011Redspin, Inc.
 
Taming the data demons: leveraging information in the age of risk white paper
Taming the data demons: leveraging information in the age of risk white paperTaming the data demons: leveraging information in the age of risk white paper
Taming the data demons: leveraging information in the age of risk white paperIBM India Smarter Computing
 
State of Security McAfee Study
State of Security McAfee StudyState of Security McAfee Study
State of Security McAfee StudyHiten Sethi
 
MCGlobalTech Service Presentation
MCGlobalTech Service PresentationMCGlobalTech Service Presentation
MCGlobalTech Service PresentationWilliam McBorrough
 
Whitepaper - Data Security while outsourcing
Whitepaper - Data Security while outsourcingWhitepaper - Data Security while outsourcing
Whitepaper - Data Security while outsourcingRaghuraman Ramamurthy
 
New Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsNew Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsDavid X Martin
 
Qatar Proposal
Qatar ProposalQatar Proposal
Qatar ProposalAbsar Husain
 
Simplifying Security for Cloud Adoption - Defining your game plan
Simplifying Security for Cloud Adoption - Defining your game planSimplifying Security for Cloud Adoption - Defining your game plan
Simplifying Security for Cloud Adoption - Defining your game planSecurestorm
 
SMB270: Security Essentials for ITSM
SMB270: Security Essentials for ITSMSMB270: Security Essentials for ITSM
SMB270: Security Essentials for ITSMIvanti
 
From checkboxes to frameworks
From checkboxes to frameworksFrom checkboxes to frameworks
From checkboxes to frameworksAndréanne Clarke
 
Cybersecurity Preparedness Trends and Best Practices
Cybersecurity Preparedness Trends and Best PracticesCybersecurity Preparedness Trends and Best Practices
Cybersecurity Preparedness Trends and Best PracticesTony Moroney
 
Agiliance Whitepaper - Six Key Steps
Agiliance Whitepaper - Six Key StepsAgiliance Whitepaper - Six Key Steps
Agiliance Whitepaper - Six Key Stepsagiliancecommunity
 
It Budget Tips
It Budget TipsIt Budget Tips
It Budget Tipsagiliancecommunity
 
Agiliance Risk Vision
Agiliance Risk VisionAgiliance Risk Vision
Agiliance Risk Visionagiliancecommunity
 
Agiliance Wp Hipaa
Agiliance Wp HipaaAgiliance Wp Hipaa
Agiliance Wp Hipaaagiliancecommunity
 

More Related Content

What's hot

Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...Redspin, Inc.
 
Cyber risk management-white-paper-v8 (2) 2015
Cyber risk management-white-paper-v8 (2) 2015Cyber risk management-white-paper-v8 (2) 2015
Cyber risk management-white-paper-v8 (2) 2015Accounting_Whitepapers
 
Xero Risk Product Presentation V3.2
Xero Risk Product Presentation V3.2Xero Risk Product Presentation V3.2
Xero Risk Product Presentation V3.2Carl Booth
 
The security risk management guide
The security risk management guideThe security risk management guide
The security risk management guideSergey Erohin
 
Top 10 IT Security Issues 2011
Top 10 IT Security Issues 2011Top 10 IT Security Issues 2011
Top 10 IT Security Issues 2011Redspin, Inc.
 
Taming the data demons: leveraging information in the age of risk white paper
Taming the data demons: leveraging information in the age of risk white paperTaming the data demons: leveraging information in the age of risk white paper
Taming the data demons: leveraging information in the age of risk white paperIBM India Smarter Computing
 
State of Security McAfee Study
State of Security McAfee StudyState of Security McAfee Study
State of Security McAfee StudyHiten Sethi
 
MCGlobalTech Service Presentation
MCGlobalTech Service PresentationMCGlobalTech Service Presentation
MCGlobalTech Service PresentationWilliam McBorrough
 
Whitepaper - Data Security while outsourcing
Whitepaper - Data Security while outsourcingWhitepaper - Data Security while outsourcing
Whitepaper - Data Security while outsourcingRaghuraman Ramamurthy
 
New Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsNew Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsDavid X Martin
 
Simplifying Security for Cloud Adoption - Defining your game plan
Simplifying Security for Cloud Adoption - Defining your game planSimplifying Security for Cloud Adoption - Defining your game plan
Simplifying Security for Cloud Adoption - Defining your game planSecurestorm
 
SMB270: Security Essentials for ITSM
SMB270: Security Essentials for ITSMSMB270: Security Essentials for ITSM
SMB270: Security Essentials for ITSMIvanti
 
From checkboxes to frameworks
From checkboxes to frameworksFrom checkboxes to frameworks
From checkboxes to frameworksAndréanne Clarke
 
Cybersecurity Preparedness Trends and Best Practices
Cybersecurity Preparedness Trends and Best PracticesCybersecurity Preparedness Trends and Best Practices
Cybersecurity Preparedness Trends and Best PracticesTony Moroney
 

What's hot (18)

Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
Ensuring Security, Privacy, and Compliance in Healthcare IT - Redspin Informa...
 
Real Time Risk Management
Real Time Risk ManagementReal Time Risk Management
Real Time Risk Management
 
Cyber risk management-white-paper-v8 (2) 2015
Cyber risk management-white-paper-v8 (2) 2015Cyber risk management-white-paper-v8 (2) 2015
Cyber risk management-white-paper-v8 (2) 2015
 
Xero Risk Product Presentation V3.2
Xero Risk Product Presentation V3.2Xero Risk Product Presentation V3.2
Xero Risk Product Presentation V3.2
 
The security risk management guide
The security risk management guideThe security risk management guide
The security risk management guide
 
Energy Risk Management
Energy Risk Management Energy Risk Management
Energy Risk Management
 
TOGAF 9 - Security Architecture Ver1 0
TOGAF 9 - Security Architecture Ver1 0TOGAF 9 - Security Architecture Ver1 0
TOGAF 9 - Security Architecture Ver1 0
 
Top 10 IT Security Issues 2011
Top 10 IT Security Issues 2011Top 10 IT Security Issues 2011
Top 10 IT Security Issues 2011
 
Taming the data demons: leveraging information in the age of risk white paper
Taming the data demons: leveraging information in the age of risk white paperTaming the data demons: leveraging information in the age of risk white paper
Taming the data demons: leveraging information in the age of risk white paper
 
State of Security McAfee Study
State of Security McAfee StudyState of Security McAfee Study
State of Security McAfee Study
 
MCGlobalTech Service Presentation
MCGlobalTech Service PresentationMCGlobalTech Service Presentation
MCGlobalTech Service Presentation
 
Whitepaper - Data Security while outsourcing
Whitepaper - Data Security while outsourcingWhitepaper - Data Security while outsourcing
Whitepaper - Data Security while outsourcing
 
New Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-ProfitsNew Risk Management Paradigm for Not-For-Profits
New Risk Management Paradigm for Not-For-Profits
 
Qatar Proposal
Qatar ProposalQatar Proposal
Qatar Proposal
 
Simplifying Security for Cloud Adoption - Defining your game plan
Simplifying Security for Cloud Adoption - Defining your game planSimplifying Security for Cloud Adoption - Defining your game plan
Simplifying Security for Cloud Adoption - Defining your game plan
 
SMB270: Security Essentials for ITSM
SMB270: Security Essentials for ITSMSMB270: Security Essentials for ITSM
SMB270: Security Essentials for ITSM
 
From checkboxes to frameworks
From checkboxes to frameworksFrom checkboxes to frameworks
From checkboxes to frameworks
 
Cybersecurity Preparedness Trends and Best Practices
Cybersecurity Preparedness Trends and Best PracticesCybersecurity Preparedness Trends and Best Practices
Cybersecurity Preparedness Trends and Best Practices
 

Viewers also liked

Agiliance Whitepaper - Six Key Steps
Agiliance Whitepaper - Six Key StepsAgiliance Whitepaper - Six Key Steps
Agiliance Whitepaper - Six Key Stepsagiliancecommunity
 
Multi-channel Customer Experience Management
Multi-channel Customer Experience ManagementMulti-channel Customer Experience Management
Multi-channel Customer Experience ManagementNitten Bbinhhani
 

Viewers also liked (6)

Agiliance Whitepaper - Six Key Steps
Agiliance Whitepaper - Six Key StepsAgiliance Whitepaper - Six Key Steps
Agiliance Whitepaper - Six Key Steps
 
It Budget Tips
It Budget TipsIt Budget Tips
It Budget Tips
 
Agiliance Risk Vision
Agiliance Risk VisionAgiliance Risk Vision
Agiliance Risk Vision
 
Agiliance Wp Hipaa
Agiliance Wp HipaaAgiliance Wp Hipaa
Agiliance Wp Hipaa
 
Agiliance HIPAA Whitepaper
Agiliance HIPAA WhitepaperAgiliance HIPAA Whitepaper
Agiliance HIPAA Whitepaper
 
Multi-channel Customer Experience Management
Multi-channel Customer Experience ManagementMulti-channel Customer Experience Management
Multi-channel Customer Experience Management
 

Similar to Agiliance RiskVision Streamlines IT Risk

Security Governance by Risknavigator 2010
Security Governance by Risknavigator 2010Security Governance by Risknavigator 2010
Security Governance by Risknavigator 2010Lennart Bredberg
 
Governance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesGovernance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesCapgemini
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk managementMetricStream Inc
 
Risk Taker Product Presentation V1.0 7th January 2008
Risk Taker Product Presentation V1.0 7th January 2008Risk Taker Product Presentation V1.0 7th January 2008
Risk Taker Product Presentation V1.0 7th January 2008Carl Booth
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-auditMetricStream Inc
 
Power your businesswith risk informed decisions
Power your businesswith risk informed decisionsPower your businesswith risk informed decisions
Power your businesswith risk informed decisionsAlireza Ghahrood
 
Integrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessIntegrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessAyham Kochaji
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance MetricStream Inc
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-ormMetricStream Inc
 
GP for Regulatory Management Product Sheet
GP for Regulatory Management Product SheetGP for Regulatory Management Product Sheet
GP for Regulatory Management Product SheetMarco Villacorta Olano
 
Happiest Minds NIST CSF compliance Brochure
Happiest Minds NIST CSF compliance BrochureHappiest Minds NIST CSF compliance Brochure
Happiest Minds NIST CSF compliance BrochureSuresh Kanniappan
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solutionMetricStream Inc
 
Nasrhuma Inc Grc Solutions 011010
Nasrhuma Inc Grc Solutions 011010Nasrhuma Inc Grc Solutions 011010
Nasrhuma Inc Grc Solutions 011010Nasser J Khan
 
The Vision, Highlights and Implementation Benefits of GRC STACK
The Vision, Highlights and Implementation Benefits of GRC STACKThe Vision, Highlights and Implementation Benefits of GRC STACK
The Vision, Highlights and Implementation Benefits of GRC STACKGRC Stack Pvt. Ltd,
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry MetricStream Inc
 

Similar to Agiliance RiskVision Streamlines IT Risk (20)

Allgress Brochure
Allgress BrochureAllgress Brochure
Allgress Brochure
 
Security Governance by Risknavigator 2010
Security Governance by Risknavigator 2010Security Governance by Risknavigator 2010
Security Governance by Risknavigator 2010
 
Governance, Risk, and Compliance Services
Governance, Risk, and Compliance ServicesGovernance, Risk, and Compliance Services
Governance, Risk, and Compliance Services
 
Allgress_Brochure
Allgress_BrochureAllgress_Brochure
Allgress_Brochure
 
Enterprise risk management
Enterprise risk managementEnterprise risk management
Enterprise risk management
 
Risk Taker Product Presentation V1.0 7th January 2008
Risk Taker Product Presentation V1.0 7th January 2008Risk Taker Product Presentation V1.0 7th January 2008
Risk Taker Product Presentation V1.0 7th January 2008
 
Payment giant-automates-internal-audit
Payment giant-automates-internal-auditPayment giant-automates-internal-audit
Payment giant-automates-internal-audit
 
Power your businesswith risk informed decisions
Power your businesswith risk informed decisionsPower your businesswith risk informed decisions
Power your businesswith risk informed decisions
 
Integrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-EffectivenessIntegrating-Cyber-Security-for-Increased-Effectiveness
Integrating-Cyber-Security-for-Increased-Effectiveness
 
BizCarta-2
BizCarta-2BizCarta-2
BizCarta-2
 
A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance A Financial Planning Leader Streamlines Audit, Risk and Compliance
A Financial Planning Leader Streamlines Audit, Risk and Compliance
 
Financial organization-orm
Financial organization-ormFinancial organization-orm
Financial organization-orm
 
GP for Regulatory Management Product Sheet
GP for Regulatory Management Product SheetGP for Regulatory Management Product Sheet
GP for Regulatory Management Product Sheet
 
Happiest Minds NIST CSF compliance Brochure
Happiest Minds NIST CSF compliance BrochureHappiest Minds NIST CSF compliance Brochure
Happiest Minds NIST CSF compliance Brochure
 
Next generation-risk-management-solution
Next generation-risk-management-solutionNext generation-risk-management-solution
Next generation-risk-management-solution
 
Nasrhuma Inc Grc Solutions 011010
Nasrhuma Inc Grc Solutions 011010Nasrhuma Inc Grc Solutions 011010
Nasrhuma Inc Grc Solutions 011010
 
Lead Through Disruption Guide PDF
Lead Through Disruption Guide PDFLead Through Disruption Guide PDF
Lead Through Disruption Guide PDF
 
The Vision, Highlights and Implementation Benefits of GRC STACK
The Vision, Highlights and Implementation Benefits of GRC STACKThe Vision, Highlights and Implementation Benefits of GRC STACK
The Vision, Highlights and Implementation Benefits of GRC STACK
 
Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry Governance, Risk and Compliance- Energy Industry
Governance, Risk and Compliance- Energy Industry
 
RAP GC 2016
RAP GC 2016RAP GC 2016
RAP GC 2016
 

Recently uploaded

Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfPrecisely
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionDilum Bandara
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningLars Bell
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity PlanDatabarracks
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebUiPathCommunity
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Scott Keck-Warren
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 3652toLead Limited
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupFlorian Wilhelm
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfAlex Barbosa Coqueiro
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clashcharlottematthew16
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLScyllaDB
 

Recently uploaded (20)

Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdfHyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
Hyperautomation and AI/ML: A Strategy for Digital Transformation Success.pdf
 
Advanced Computer Architecture – An Introduction
Advanced Computer Architecture – An IntroductionAdvanced Computer Architecture – An Introduction
Advanced Computer Architecture – An Introduction
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
DSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine TuningDSPy a system for AI to Write Prompts and Do Fine Tuning
DSPy a system for AI to Write Prompts and Do Fine Tuning
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
How to write a Business Continuity Plan
How to write a Business Continuity PlanHow to write a Business Continuity Plan
How to write a Business Continuity Plan
 
Dev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio WebDev Dives: Streamline document processing with UiPath Studio Web
Dev Dives: Streamline document processing with UiPath Studio Web
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024Advanced Test Driven-Development @ php[tek] 2024
Advanced Test Driven-Development @ php[tek] 2024
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365Ensuring Technical Readiness For Copilot in Microsoft 365
Ensuring Technical Readiness For Copilot in Microsoft 365
 
Streamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project SetupStreamlining Python Development: A Guide to a Modern Project Setup
Streamlining Python Development: A Guide to a Modern Project Setup
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Unraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdfUnraveling Multimodality with Large Language Models.pdf
Unraveling Multimodality with Large Language Models.pdf
 
Powerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time ClashPowerpoint exploring the locations used in television show Time Clash
Powerpoint exploring the locations used in television show Time Clash
 
Developer Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQLDeveloper Data Modeling Mistakes: From Postgres to NoSQL
Developer Data Modeling Mistakes: From Postgres to NoSQL
 

Agiliance RiskVision Streamlines IT Risk

  • 1. Agiliance RiskVision 4.0 “Not only did the IT Risk Management and Compliance Automation Platform Agiliance solution alleviate some immediate pain through automation of the seemingly never-ending list of compliance assessments, I believe it will ultimately help us implement a proactive and cost effective risk management strategy.” Agiliance RiskVision™ is a complete IT • Improves risk management efforts: risk and compliance management system Agiliance RiskVision supports an — Shane Fuller, designed to help organizations keep pace “always-on” proactive approach to risk Information Security with the expanding requirements of IT management that helps companies gain & Compliance Manager, compliance and operate at their highest enterprise-wide visibility into risks and RSA Insurance level of performance. With powerful risk reliably report on current IT risk exposure. management and automation capabilities, • Supports effective governance: companies can reduce compliance related Agiliance RiskVision allows organizations costs by up to 70% and improve oversight to measure and report on the of IT compliance initiatives. Our integrated IT effectiveness of risk and compliance risk and compliance management platform initiatives, better align IT strategy with is being used by some of the world’s largest strategic business goals, optimize companies to solve their most pressing existing security investments and IT issues including business continuity resource usage. This combined with management, vendor risk management advanced risk methodologies and and compliance management. dynamic modeling allows businesses to make risk-informed strategic decisions. SOLUTION BENEFITS • Rapid deployment and long term • Delivers real cost savings: Agiliance ROI: Agiliance RiskVision was built from RiskVision supports repeatable, the ground up as a standards-based sustainable controls monitoring, testing product that supports the extensibility, and reporting processes to reduce reliability and usability requirements compliance related costs by up to 70%. of today’s enterprise. The solution • Streamlines existing compliance accelerates time-to-deployment with processes: The product helps businesses advanced configurability features and reduce time to compliance by up to extensive interoperability with third- 80% and maintain ongoing compliance party applications. with mandates without invasive and expensive overhauls of IT infrastructure.
  • 2. BUSINESS CHALLENGE helps businesses strategically manage Successfully balancing today’s risk compliance demands and allocate IT budget “Agiliance RiskVision management, cost reduction and compliance and resources based on business objectives. equation can be a difficult feat. As security is purpose-built from incidents and new regulations continue to AGILIANCE RISKVISION OVERVIEW the ground up to grow in number and complexity, businesses Agiliance RiskVision arms companies with an what it is intended to often find themselves diverting precious staff efficient, repeatable and continuous process time and operating budget away from growth for IT compliance and risk management. It do – provide IT-GRC supporting initiatives to reactive activities such provides complete visibility into current risk management. Since it as regulatory audits. status and delivers the accurate intelligence and analytics required to ensure informed is not a suite of glued As demands to control the bottom line business decisions based on risk posture can together products, it increase and regulators become even more be made with ease and confidence. does not need to be aggressive, over-investing in compliance- related programs can negatively impact a RISK MANAGEMENT DATABASE integrated to work. company’s ability to fund future growth Agiliance RiskVision is the only product From the beginning, initiatives. For businesses that want to on the market that features a unified sophisticated risk break out of the current inflated threat and Risk Management Database (RMDB) that compliance-driven spending model to develop automatically aggregates and correlates data intelligence and a more resilient and cost-effective IT risk and controls across systems, people and management went management process, Agiliance RiskVision processes as well as controls from standards, into the product.” — Peter Stephenson Senior Editor SC Magazine
  • 3. frameworks, policies and regulations – Controls are automatically mapped to entities, out-of-the-box without the need for whether people, processes or systems, based “Agiliance comes custom development – to serve as a single on profiles. By providing a mapping of all authoritative source of IT risk from IT and policies, controls and regulatory requirements, out on top in terms of non-IT entities. Agiliance RiskVision automatically rationalizes risk functionality that controls across multiple regulations, thereby provides, out of the box, Provides authoritative source of IT risk. reducing overall effort and cost required to Agiliance RiskVision collects risk data from meet regulatory requirements. Unlike security the most standards- non-IT entities like people, vendors, and automation point solutions or process- based methodologies processes using web-based e-surveys and related GRC applications, Agiliance RiskVision automatically imports risk data from a wide combines data and test results from both IT for analyzing IT risks.” range of IT, security and compliance assets. and non-IT entities to dissolve organizational — Marc Othersen silos and provide an authoritative single view Senior Analyst Streamlines compliance efforts across of IT risk across the enterprise. Forrester Research multiple regulations and best practices. Agiliance RiskVision ships with a content-rich Common Control Framework that premaps controls across over 30 regulations and industry mandates (e.g., SOX, HIPAA, PCI, GLBA, and NERC), many standard frameworks (e.g., ISO 17799/27001/27002, CobiT, and NIST SP800-53/SP800-66), 10,000+ controls and sub-controls, and 200+ key risks as well ANALySIS AND WORKFLOW ENGINE as best practices, threats, vulnerabilities and Agiliance RiskVision supports an “always-on” integration with live threat data feeds. proactive approach to risk management that helps companies gain enterprise-wide visibility into IT risks and reliably report on current IT risk exposure by transforming and linking entities, regulations, policies and controls to risk scores. With the ability to accurately monitor and report policy and compliance- related violations and track remediation efforts, business can proactively manage corporate risk. Delivers centralized policy management. Agiliance RiskVision enables IT, risk and compliance managers to create new policies, promote policy awareness, manage policy exceptions, assess policy compliance, and view risks that may arise from non-compliance. Policies are linked to controls and can be linked to risk as well – allowing analysts to view risk of non-compliance. Complete
  • 4. policy authoring, review, approval and assessment projects. E-surveys can be dissemination capabilities based on delegated to teams or individuals and the “We’re working with multi-stage workflow are built-in to system assures that the right people are the application. The product includes responding to the surveys. The solution Agiliance because awareness campaigns that can be used to enables multiple assessment projects to their product met promote, communicate and test employees’ run simultaneously and scales to conduct our key criteria understanding of policies. assessments on tens of thousands of entities. which include easy Provides a complete closed loop risk integration with our management system. The product company’s existing provides continuous visibility into the monitoring, management and reporting of applications.” risks and controls across departmental and — Oliver Eckel, geographical boundaries to help eliminate Head of silos. Agiliance RiskVision calculates current Corporate Security, risks, inherent risks and remedial risks with bwin Interactive operational risk scoring of controls down to Entertainment AG the sub-control level across 10,000+ controls in the Common Control Framework. The product supports multiple risk methodologies including ISO 27005, ISO 31000, and COSO Automates Assessments. Agiliance ERM and risk assessment types, such as, IT RiskVision streamlines assessments using risk, ERM, KRI trending and threat models web-based e-survey questionnaires and so that companies can anticipate potential automated workflow with the ability to threats and react appropriately. import findings in multiple formats and from multiple sources. E-survey questions are automatically generated based on controls, delivered and tracked based on configurable workflow to help avoid dead-ends and project delays. Survey responders can attach evidence in the form of csv, pdf, excel or word files (e.g. structured files containing activity or time stamp data from systems such as physical access control, building management or fire protection systems for data centers) for use by auditors. Powerful project wizards allow assessment projects to be quickly initiated and easily configured The product automatically prioritizes IT using pre-defined workflows or previous assets such as servers, applications and network devices that need to be monitored for risk so that the most critical assets can be addressed first, e.g., those containing personal identification information, medical records or credit card information. Using
  • 5. this intelligence, decision makers can be confident that budget is being wisely allocated “Agiliance is one of towards the most critical assets – eliminating the solutions we use overspending on shotgun approaches that may add unwarranted controls across the in Arizona as part of entire IT environment. our overall effort to To provide end-to-end risk management, take an “always on”, Agiliance RiskVision automates remediation proactive stance to and mitigation workflows with a native security and risk so that ticketing system and integration with internal ticketing systems, like BMC Remedy and HP we can stay ahead of Service Center, and ensures that remediation, evolving threats and exception handling and delegation to teams is Delivers dynamic risk modeling to support handled in a efficient manner. informed business decisions. Agiliance preserve confidence in RiskVision delivers powerful “What-If” risk government services.” modeling capabilities to study the effects of applying specific controls before changes — Fred Sargeson are made. With roles-based views, managers General Manager NIC- State of Arizona across the enterprise can assess the impact of various risk mitigation plans including the cost of downtime and the cost of replacing the asset to make real-time decisions about INTELLIGENCE CENTER remediation versus accepting or transferring With intuitive risk performance dashboards the risk. Agiliance RiskVision allows risk and powerful analytic tools, Agiliance parameters to be expressed in dollar values, RiskVision allows companies to pull together making it easy to compare the cost of controls the interdependent disciplines of security, to their effectiveness in mitigating the compliance and risk to establish more corresponding risks. This, in combination with accountable and effective IT governance powerful trending tools, allows executives to without the associated high costs and easily track and measure the effectiveness of inefficiencies of disparate programs. Agiliance risk and compliance programs over time. RiskVision helps companies evolve their risk management processes by providing current Ships with over 150 standard templates to and accurate visibility into how IT risk affects document compliance and communicate the entire organization and by enabling rapid, risks. The built in reporting capabilities help informed decision making on allocation of IT companies to efficiently meet regulatory security investments and risk posture to ensure and executive reporting requirements. With business resiliency. By combining advanced customization features and real-time data- quantitative and qualitative risk analysis feeds, users can create up to the minute techniques, customers have the degree of content-rich reports for auditors and granularity needed to make informed risk- executives within a matter of minutes. The based decisions. product allows users to report on compliance
  • 6. InnovatIve status, risk status, remediation status and requirements of today’s enterprise. Agiliance Modern business ROI information based on exposure, solutions are highly configurable and easy to archItecture rate of occurrence and loss expectancy. integrate so that companies can realize time • n-Tier web applications utilizing to value in 45 days or less. Web 2.0 and Ajax capabilities • Apache and Java stack, cross- Provides executives with accurate and up- platform, enterprise scalable to-date risk and compliance transparency. Our security automation and enterprise • Web services interface for connectors, reports and dashboards By normalizing and combining risk from non- software acumen allows us to offer the compliance with regulations and standards, IT capabilities customers need to support long- connectIvItY security and system automation gaps as well term risk management goals and realize up Configuration Management as process related risk, Agiliance RiskVision to a 70% reduction in compliance related Systems consolidates risk data into dashboard views costs. By offering market-ready “quick-start” Altiris SecurityExpressions (Symantec) Big Fix that provide executives transparency into solutions, Agiliance helps companies progress BMC Atrium current compliance and risk status. Using from first phase compliance projects through NetIQ SCM roles-based views, risks can be effectively to robust and strategic IT risk management Symantec ESM communicated across the organization using programs with ease and confidence. Vulnerability Scanners the intuitive web-based interface to display eEye Retina HP WebInspect risk and compliance results in summary views With the industry’s most powerful risk IBM Rational AppScan by organization or business unit. management and automation platform, ISS SiteProtector Agiliance is the company that global 2000 McAfee Foundstone nCircle IP360 WHy AGILIANCE companies trust to solve their most pressing Nessus – Tenable As the costs and complexity of IT risk and risk issues including business continuity QualysGuard compliance management continues to rise, management, vendor risk management and Skybox Agiliance believes that customers deserve compliance management. Remediation Management high performance solutions that completely Best Practical Solutions RTIR BMC Remedy address the IT risk and compliance demands HP Service Center (Peregrine) of today and scale to meet future challenges. Security Information Agiliance RiskVision was built from the ground Managers (SIM/SIEM) up as an integrated IT risk and compliance Arcsight Enterprise Security Manager Cisco MARS management platform that supports NetIQ Security Manager the automation and risk management Novell Sentinel RSA enVision Integrated Security Managers McAfee ePolicy Orchestrator RSA DLP Enterprise Suite (EMC) Identity Management CA SiteMinder IBM Tivoli Identity Manager ABOUT AGILIANCE Oracle Identity Manager Agiliance offers highly-automated IT risk and compliance management software products designed to Sun Identity Manager help organizations thrive in the face of mounting pressures to manage and balance risk, compliance and Automated Controls IT budgets. Global 2000 companies in the financial, healthcare, energy, government and technology Approva BizRights Platform industries are leveraging the power of Agiliance software to cut compliance costs and to provide decision Oracle Enterprise Manager makers with the current and accurate intelligence they need to better understand how IT risk affects their SAP GRC Access Control (Virsa) entire organization. Agiliance, Inc. 1732 North First Street p: 408.200.0400 www.agiliance.com © 2008 Agiliance, Inc. Suite 200 f: 408.200.0401 info@agiliance.com All rights reserved. San Jose, CA 95112