Lightwave Security SecureAware

Powered by SC Magazine
 

It has awareness tools and acknowledgements and testing, BCP inclusion, and a very nice UI but it costs a lot.

Lightwave Security's Secure-Aware is a risk and compliance management and reporting platform supporting industry-standard frameworks, such as ISO 2700x, PCI DSS and COBIT 4.1. The solution includes four modules: policy and awareness, compliance, risk management, and business continuity planning.

A menu-driven web interface walks users through setting up risk assessments by defining systems, processes and the process system relation. Business impact, vulnerabilities and threats are documented through the use of questionnaire-based assessments, as is reporting on vulnerabilities at the network asset and process level, and managing the workflow associated with the remediation of risks. Risk assessments are derived from the enterprise security policy and are customizable to the standard to which the enterprise is aligned. Regardless of the standard to which it maps, the risk assessment methodology complies with ISO 27001/27002 standards. The workflow engine was helpful. It integrated with Active Directory (AD) and the lightweight directory access protocol natively to facilitate the tracking of tasks, questionnaires and documentation.

SecureAware can report an enterprise risk profile on a continuous basis through its dashboard and report-writing capabilities. Browser-based graphical presentations of risk data, business impact and risk assessments and analysis are also included.

Sold as a software solution, the offering is deployed on either a Windows or Linux server. It is a light and simple implementation. Eight-hours-a-day/five-days-a-week phone and email support is included for the first year and provided at a fee after that.

This solution focuses on the business risk side of the equation. It provides effective tools for creating policies and measures and maps risk to those policies and industry standards. From a policy/risk management aspect, this is a strong tool. We like that Lightwave also included business continuity planning in the risk management process.

Copyright © SC Magazine, US edition


Lightwave Security SecureAware
 
Overall Rating
Verdict:
Great tool for developing a ground-up enterprise GRC plan for risk management adherence at the business level.
Product Info
Specs:
Version 4.0.8
 
Supplier:
 
Price when reviewed:
8500
Tags
 
 
 
Top Stories
Microsoft confirms Australian Azure launch
Available from next week.
 
NBN Co names first 140 FTTN sites
National trial extended.
 
Cloud, big data propel bank CISOs into the boardroom
And this time, they are welcome.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
In which area is your IT shop hiring the most staff?




   |   View results
IT security and risk
  24%
 
Sourcing and strategy
  12%
 
IT infrastructure (servers, storage, networking)
  23%
 
End user computing (desktops, mobiles, apps)
  14%
 
Software development
  27%
TOTAL VOTES: 271

Vote
Would your InfoSec team be prepared to share threat data with the Australian Government?

   |   View results
Yes
  61%
 
No
  39%
TOTAL VOTES: 85

Vote