"Nitro's ability to meet feature demands, coupled with its super fast NitroEDB data management engine on the back end put it in a unique position among SIEM vendors"
— Paul Roberts, Analyst, the 451 Group
 

Nitro on linked in Foolow us on twitter NitroSecurity's YouTube channel

 
 

Regulatory Compliance Standards

PCI

Payment Card Industry Data Security Standard

PCI payment Card Industry Data Security Standard

There are twelve security requirements mandated by PCI, of which several relate directly to security and log management - including the troublesome PCI sections 10, 11.4, 12.9 and 12.10. NitroSecurity provides both log management, analysis, data monitoring and intrusion prevention solutions that cover nearly every aspect of PCI compliance—more in-depth PCI compliance coverage than any other solution.

FISMA

Federal Information Security Management Act

FISMA Federal Information Security Management Act

FISMA requires each federal agency to develop, document, and implement an agency-wide program to provide security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source. NitroSecurity provides a solution for many areas of FISMA, including AC, AU, SC, IR and SI requirements.

NERC

North American Electric Reliability Corporation (NERC) Cyber Security Standard

NERC Security Standard

The North American Electric Reliability Corporation, or NERC, as a not-for-profit organization to "ensure the reliability of the bulk power system in North America." This is accomplished in part by the development and enforcement of reliability standards. NERC is a self-regulatory organization, subject to oversight by the U.S. Federal Energy Regulatory Commission and governmental authorities in Canada.

SOX

Sarbanes-Oxley Act

SOX Sarbanes-Oxley Act

SOX focuses on 'internal controls' requirements, and most of what is required is non-technical. However, two of the SOX requirements - the requirements in SOX rule 302 and 404 - are aligned with a company's reporting structure. Although rules 302 and 404 mainly focus on financial reporting, a migration towards IT and security reporting is occurring as new internal controls procedures are being implemented. NitroSecurity offers log and event auditing and reporting to assist in these aspects of SOX compliance.

HIPAA

Health Insurance Portability & Accountability Act

HIPAA Health Insurance Portability and Accountability Act

Compliance requirements under HIPAA are diverse, and include organizational, procedural and security standards. The Security Rule or Security Standards and Technical Safeguards is included in the Security Standards for the protection of Electronic Protected Health Information provision. NitroSecurity provides a solution for the Access Control portion of HIPAA 45 CFR Part 160 & Part 164, subparts A and C.

DCID 6-3

Director of Central Intelligence Directive 6/3

DCID 6-3, Director of Central Intelligence Directive

This directive establishes that "Appropriate security measures shall be implemented to ensure the confidentiality, integrity, and availability of information." NitroSecurity provides a solution for the DCID including 6-3 section B2 and other areas relating to the protection, tracking and auditing of information. HIPAA 45 CFR Part 160 & Part 164, subparts A and C.




These icons link to social bookmarking sites to help share this content.
  • share this page:
  • bodytext
  • del.icio.us
  • Reddit
  • Slashdot
  • Technorati
  • Propeller
  • TwitThis
 

Search NitroSecurity.com