compliance to enable security - qmulos · · 2016-03-02utilizing splunk, the qmulos enterprise...
TRANSCRIPT
![Page 1: Compliance to Enable Security - Qmulos · · 2016-03-02Utilizing Splunk, the Qmulos Enterprise Compliance ... Compliance to Enable Security ... Microsoft Word - Q-Compliance.docx](https://reader031.vdocument.in/reader031/viewer/2022022513/5aef90807f8b9ac62b8da070/html5/thumbnails/1.jpg)
Compliance to Enable Security – Q-Compliance Automated Compliance based on 800-53r4 ©2015 Qmulos, LLC. All rights reserved.
Q-COMPLIANCE Compliance to Enable Security
Qmulosisproudtoreleasethemostadvancedandcompletecomplianceapplicationcurrentlyinthemarket.UtilizingSplunk,theQmulosEnterpriseCompliance(Q-Compliance)aggregatesandnormalizesrelevantcontroldata,creatingdashboardsandeasilyreferencedlinksbetweenpolicystatements,configurablesettings,andlogdata.
Organizationswillimmediatelynoticeadecreaseinlaborhoursinrespondingorgatheringdata,whichpreviouslyrequiredmoremanualmeansofcompilation.Q-Compliancegeneratescompliancereports,securitypostures,andscoresinanumberofways,providingforafocusedviewofyourcompliancemonitoringefforts.
AsacompletesolutionbasedontheNISTSP800-53r4ControlsCatalogue,itsupportsusecasesforFISMAcompliance,DoD/ICadoptionofRMF,DefenseContractorsseekingDFARcompliancewithNISTSP800-171,aswellwepublicandprivatesectorentitiesusingtheNISTRiskManagementFramework.
OurSolution:
ShowsauditorsauditableevidencebasedonSP800-53r4,aswellasNISTCybersecurityFrameworkandSANSCriticalControlsstandards.ForthosewithrobustSplunkdeployment,thereisminimalsetupandnoneedtomodifydatafeeds.
Utilizesaflexiblearchitecturethatensuresthatallofyourcompliancedatawillbecollected,correlated,andanalyzedtoderivecompliancemetricsandpostures.
AchievesmaximumefficiencybytreatingyourexistingSplunkinfrastructureastheauditingevidencerepository,leveragingSplunk’srobustdatacapabilitiestoprovideabsoluteenvironmentalcontext.
Providestheauditorwithacentralizedlocationforpolicystatements,configurationsettings,andtheassociateddata,expeditingtheauditprocess,savingorganizationsvaluabletimeandresources.
Q-Complianceenablesanalyststoidentifyareasofinadequatecompliance,isolateconfigurationsettingsthatneedtobeimplementedtoachievecompliance,andverifycompliancethroughdataanalysis.Eachcontrolhasapagededicatedtoitscompliance,providingevidenceofimplementationandstatus.
Q-Complianceisbuilt on Splunk® Enterprise
![Page 2: Compliance to Enable Security - Qmulos · · 2016-03-02Utilizing Splunk, the Qmulos Enterprise Compliance ... Compliance to Enable Security ... Microsoft Word - Q-Compliance.docx](https://reader031.vdocument.in/reader031/viewer/2022022513/5aef90807f8b9ac62b8da070/html5/thumbnails/2.jpg)
Compliance to Enable Security – Q-Compliance Automated Compliance based on 800-53r4 ©2016 Qmulos, LLC. All rights reserved.
2
EXECUTIVE OVERVIEW
• Produces organizational compliance scoresandtrendswhileofferingdrill-downviewstoidentifytroublespots
• Uses built-in scoring methodology that canbe adjusted based on excepted andinheritedcontrols
ENTERPRISE OPPORTUNITIES • Provides snapshot of compliance scores
grouped into five enterprise solutiondomains: vulnerability management,hardware assetmanagement, software assetmanagement, configuration management,andenterpriseaudit
• Facilitates investment decisions whenidentifying product categories that will raisecompliancescores
COMPLIANCE OVERVIEW DASHBOARDS • Relies on innovative visualizations and drill-down
views that enable auditors and analysts to quicklylinkcontrolstosupportingevidence
• Monitors compliance at the organization, system,control family, or control level through interactivedashboards
Security is hard; compliance shouldn’t be. [email protected],visitwww.qmulos.com,orcall1-844-476-8567formoreinformationortoscheduleanon-sitedemo.