Many organizations around the globe must measure and report on compliance across industry mandates, government regulations, and internal policies. They rely on multiple applications and processes to support compliance efforts spread across multiple departments. Most organizations spend up to 50 percent more on compliance than is necessary* due to redundant compliance workflows.
The UCF is an industry-vetted compliance database that is developed in collaboration with industry experts, legal advisors, and standards-setting bodies across global regulations. The UCF automatically harmonizes controls across hundreds of different regulations and best-practice frameworks, including PCI , Sarbanes-Oxley, HIPAA, CobiT, NIST and hundreds more. More than 400 regulations and standards documents are included, with full cross-references to supporting IT controls. By significantly reducing the duplication of control implementations, organizations can cost-efficiently demonstrate compliance.
* - IT Policy Compliance, Managing Spend on IT Security and Audit for Better Results, February 2009
Lumension Risk Manager Leverages UCF to Automate IT-GRC Efforts Across Multiple Internal and External Compliance Requirements
Through use of the UCF, Lumension® Risk Manager provides a complete view of regulations, mandates and guidelines allowing organizations to assess their IT environments easily and simultaneously review external and internal compliance requirements – ultimately saving time and money.
Lumension® Risk Manager allows an administrator to click on a regulation, framework or policy and immediately obtain a view of the organization’s level of compliance per business process or per individual subject, such as a server, workstation, application, etc.
Learn more about Lumension® Risk Manager and how this IT-GRC software solution can reduce your cost of compliance across multiple regulations.