Fortefiâ¢ Corporation, developers of enterprise security management software, today announced the inclusion of the Fortefi Compliance Auditor in the 2.1 release of its Framework product. Developed in conjunction with feedback from financial institution customers, the reporting tool presents auditors with defined sets of audit data pulled from Fortefi security solutions, in a graphical interface that provides analysis and indelible annotation.
Regulatory legislation such as Sarbanes-Oxley (SOX) requires that companies provide authentic and accurate audit information on security and authentication mechanisms. âMany security systems provide the raw data records required but not the tools to manage themâ commented James Taylor, Fortefiâs Chief Executive Officer. âBuilding the capability to help auditors work with the volumes of data collected will be of tremendous benefit, and represents another clear example of the values of working closely with our customersâ.
With the Fortefi Compliance Auditor, rules can be created to pull any number of audit events matching a given filter into the tool at any specific frequency. As well as providing access to activity across the entire Framework, when used in conjunction with Command Control, Fortefiâs UNIX security management and auditing system, it is possible for auditors to view security transactions, play back recordings of user activity, and record notes against each record creating permanent archives of activity.
âBuilding an infrastructure for audit compliance is a costly undertaking for many organizationsâ said Martin Cannard, Fortefiâs Vice President, Sales and Marketing. âWe listened to the needs of our customers at both ends of the spectrum, and created a scalable solution that is as accessible to the smaller organization as it is to the large enterprise,â he concluded.