IBM Compliance Expert Express Edition

Highlights

  • Easily set dozens of AIX security configuration settings to match external compliance standards
  • Includes profiles with recommended system settings for the Payment Card Industry Data Security Standard, the US Department of Defense Security Technical Implementation Guide and COBIT best practices
  • Simple command line interface minimizes training requirements and administrative workload
  • Reports that simplify demonstrating compliance
  • Support for AIX 7, AIX 6 and AIX V5.3

Insuring system compliance with third party security standards is often a labor intensive and time consuming process.

Compliance standards are typically long, complex documents that are difficult to translate into the appropriate AIX operating system settings.

And, since standards often encompass many different area of operating system configuration, an administrator frequently had to use several different administrative interfaces to configure a system to support standards compliance. The IBM Compliance Expert Express Edition is designed to simplify the administrative effort associated with complying with two common external standards.

The Compliance Expert Express Edition consists of a simple command line interface and preconfigured compliance profiles for the COBIT Framework for IT Governance and Control standard, the Payment Card Industry Data Security Standard Version 2 (PCI DSS) and the US Department of Defense Security Technical Implementation Guide for UNIX (DoD STIG) standards. The COBIT standard is often used by companies subject to the US Sarbanes Oxley Act of 2002.

Administrators can use the IBM Compliance Expert Express Edition to set all relevant system parameters required by these standards.

The profiles include recommended settings for several areas of AIX configuration, including aspects such as minimum password length, password reuse, number of unsuccessful login attempts before lockout and other configuration aspects.

The administrator can run reports that show whether the system is configured to be compliant. These reports can alert the administrator to unauthorized parameter changes and to provide a foundation for compliance audits.

All external security standards include aspects outside the realm of system configuration settings. The use of a tool like the IBM Compliance Expert Express Edition will not, by itself, insure standards compliance. The Compliance Expert is designed to simplify the management of systems configuration setting, allowing the administrators to focus on the other aspects of standards compliance.

 

Have any questions? Contact us!
Page navigation
Contact us

First Name

Last Name

Company

Email

Phone

Comments


Latest blog entries: TSM Server lost communication with tape library and tape drives
Full article

Measurable Value and Technology Solutions

Measurable Value and Technology Solutions

As a trusted advisor to our clients, thinkASG combines business and industry knowledge with infrastructure expertise to create IT solutions that deliver real business value. As an IT systems integrator, our primary mission is to understand and improve customers' businesses in order to help them create and sustain a competitive advantage. To that end, we develop and implement results-oriented IT systems and solutions that address high-level business and technology challenges and goals.
As an IT systems integrator, we use a unique methodology that focuses on up front strategy, fast and effective implementation and knowledge transfer to ensure long-term success. Leveraging a proprietary four part process, our experts diagnose your challenges, develop an appropriate solution, deploy it quickly and provide the detailed documentation you need to help ensure ongoing success.

Industry News

Check out latest news in IT industry