Lightwave Security SecureAware

Powered by SC Magazine
 

It has awareness tools and acknowledgements and testing, BCP inclusion, and a very nice UI but it costs a lot.

Lightwave Security's Secure-Aware is a risk and compliance management and reporting platform supporting industry-standard frameworks, such as ISO 2700x, PCI DSS and COBIT 4.1. The solution includes four modules: policy and awareness, compliance, risk management, and business continuity planning.

A menu-driven web interface walks users through setting up risk assessments by defining systems, processes and the process system relation. Business impact, vulnerabilities and threats are documented through the use of questionnaire-based assessments, as is reporting on vulnerabilities at the network asset and process level, and managing the workflow associated with the remediation of risks. Risk assessments are derived from the enterprise security policy and are customizable to the standard to which the enterprise is aligned. Regardless of the standard to which it maps, the risk assessment methodology complies with ISO 27001/27002 standards. The workflow engine was helpful. It integrated with Active Directory (AD) and the lightweight directory access protocol natively to facilitate the tracking of tasks, questionnaires and documentation.

SecureAware can report an enterprise risk profile on a continuous basis through its dashboard and report-writing capabilities. Browser-based graphical presentations of risk data, business impact and risk assessments and analysis are also included.

Sold as a software solution, the offering is deployed on either a Windows or Linux server. It is a light and simple implementation. Eight-hours-a-day/five-days-a-week phone and email support is included for the first year and provided at a fee after that.

This solution focuses on the business risk side of the equation. It provides effective tools for creating policies and measures and maps risk to those policies and industry standards. From a policy/risk management aspect, this is a strong tool. We like that Lightwave also included business continuity planning in the risk management process.

Copyright © SC Magazine, US edition


Lightwave Security SecureAware
 
Overall Rating
Verdict:
Great tool for developing a ground-up enterprise GRC plan for risk management adherence at the business level.
Product Info
Specs:
Version 4.0.8
 
Supplier:
 
Price when reviewed:
8500
Tags
 
 
 
Top Stories
Australia's godfather of agile
Few technology leaders have seen the forces of digital disruption so repeatedly and at such close quarters than Nigel Dalton, CIO of the REA Group.
 
Photos: Innovation sprouts up among the lettuces
Inside the 21st Century farms managed from a smartphone.
 
Slow progress in Turnbullistan
[Blog post] How has the NBN moved ahead since regime change?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  24%
 
Application integration concerns
  3%
 
Security and compliance concerns
  30%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  24%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  4%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 563

Vote