Lightwave Security SecureAware

Powered by SC Magazine
 

It has awareness tools and acknowledgements and testing, BCP inclusion, and a very nice UI but it costs a lot.

Lightwave Security's Secure-Aware is a risk and compliance management and reporting platform supporting industry-standard frameworks, such as ISO 2700x, PCI DSS and COBIT 4.1. The solution includes four modules: policy and awareness, compliance, risk management, and business continuity planning.

A menu-driven web interface walks users through setting up risk assessments by defining systems, processes and the process system relation. Business impact, vulnerabilities and threats are documented through the use of questionnaire-based assessments, as is reporting on vulnerabilities at the network asset and process level, and managing the workflow associated with the remediation of risks. Risk assessments are derived from the enterprise security policy and are customizable to the standard to which the enterprise is aligned. Regardless of the standard to which it maps, the risk assessment methodology complies with ISO 27001/27002 standards. The workflow engine was helpful. It integrated with Active Directory (AD) and the lightweight directory access protocol natively to facilitate the tracking of tasks, questionnaires and documentation.

SecureAware can report an enterprise risk profile on a continuous basis through its dashboard and report-writing capabilities. Browser-based graphical presentations of risk data, business impact and risk assessments and analysis are also included.

Sold as a software solution, the offering is deployed on either a Windows or Linux server. It is a light and simple implementation. Eight-hours-a-day/five-days-a-week phone and email support is included for the first year and provided at a fee after that.

This solution focuses on the business risk side of the equation. It provides effective tools for creating policies and measures and maps risk to those policies and industry standards. From a policy/risk management aspect, this is a strong tool. We like that Lightwave also included business continuity planning in the risk management process.

Copyright © SC Magazine, US edition


Lightwave Security SecureAware
 
Overall Rating
Verdict:
Great tool for developing a ground-up enterprise GRC plan for risk management adherence at the business level.
Product Info
Specs:
Version 4.0.8
 
Supplier:
 
Price when reviewed:
8500
Tags
 
 
 
Top Stories
The iTnews Benchmark Awards
Meet the best of the best.
 
Telstra hands over copper, HFC in new $11bn NBN deal
Value of 2011 deal remains intact.
 
Photos: iTnews Benchmark 2015 finalists revealed
Awards alumni gather to celebrate.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  39%
 
Your insurance company
  4%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  14%
 
A State Government agency (Health dept, etc)
  6%
TOTAL VOTES: 1754

Vote
Do you support the abolition of the Office of the Information Commissioner?