Trustwave Acquires ControlPath

28 August 2008

Trustwave, the leading provider of on-demand data security and payment card industry compliance management solutions to businesses and organizations throughout the world, announces the acquisition of ControlPath. ControlPath offers one of the leading compliance software platforms for managing and automating enterprise Governance, Risk Management and Compliance (GRC) of multiple regulatory regimes. The deal has closed and its terms are confidential.

The integration of the ControlPath GRC technology into Trustwave’s suite of on-demand compliance management solutions will streamline multiple compliance mandates for enterprise customers, reducing their expenses and risk. The combined Compliance Suite manages and automates the entire compliance lifecycle, from risk assessment and work flow, to remediation planning and tracking and verification control testing for all security compliance frameworks. The Compliance Suite can be deployed by companies in the financial services, retail, manufacturing, energy, entertainment and healthcare industries.

A report published by IT Policy Compliance Group shows that GRC provides more than security:

• Organizations that spend now on security and compliance to move up the IT GRC maturity scale experience
o Overall higher profits
o Lower expenses
o Improved customer satisfaction and retention
• Organizations at the top of the maturity scale experienced
o 17 percent higher revenues
o 14 percent higher profits
o 17 percent higher customer retention levels
• Organizations at the top of the maturity level spend 50 percent less on regulatory compliance annually than those organizations at the bottom of the maturity scale

“ControlPath GRC has been the ideal Enterprise Risk Management framework to manage the compliance requirements for each of our business units,” says Isabelle Theisen, chief security officer at First Advantage. “The addition of Compliance Suite to Trustwave’s already extensive technology portfolio creates another useful tool which organizations can leverage to efficiently and effectively reach their compliance goal.”

“This solution provides the framework and knowledgebase to enable our clients to more easily and cost-effectively manage compliance efforts across multiple regulations,” says Robert J. McCullen, chairman and CEO of Trustwave. “By automating the compliance management process, this technology can support even the most complex requirements and lessen the time commitment and costs related to compliance management.”

“As a market leader in GRC technology, we’re excited to offer this comprehensive solution to a broader, global audience, delivering compliance management more effectively than currently employed enterprise practices,” says Matt Alderman, founder of ControlPath, who will become Trustwave’s vice president of compliance management solutions. “This technology fits well with Trustwave’s compliance suite, which currently includes solutions for a variety of regulatory mandates as the Payment Card Industry Data Security Standard (PCI DSS), Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley (SOX).”

Become a bobsguide member to access the following

1. Unrestricted access to bobsguide
2. Send a proposal request
3. Insights delivered daily to your inbox
4. Career development