Compliance – Digital IT News

Proofpoint Introduces NexusAI for Compliance

Taylor Graham — Mon, 24 May 2021 15:51:34 +0000

Proofpoint, Inc., a leading cybersecurity and compliance company, announced the launch of NexusAI for Compliance, a new machine learning module for Proofpoint Enterprise Archive customers seeking to enhance supervisory review for regulatory compliance. This scalable artificial intelligence (AI) platform significantly reduces the cost and time spent by organizations on manually reviewing electronic communications to comply with government and industry regulations. With a projected 125 percent annual return on investment, NexusAI for Compliance helps these regulated organizations eliminate low-value supervised content, decrease human error, and reduce false positives by up to 65 percent when compared with legacy solutions.

“Recent insights uncovered show compliance as one of the leading use cases for machine learning in terms of expected net growth,” said Nick Patience, founder and research vice president for 451 Research. “The ability for solutions to uncover patterns in large sets of unstructured data – false positives in this case – is key to helping highly regulated firms like financial services streamline their supervision workflows and reduce related costs.”

To ease compliance and reduce risk, Proofpoint NexusAI for Compliance is available today to complement Proofpoint Enterprise Archive, and Proofpoint Intelligent Supervision, which helps organizations build, maintain, refine, and execute an audit-ready supervision plan. Recognized by Gartner as a Leader in the October 2020 Gartner Magic Quadrant for Enterprise Information Archiving for nine consecutive years*, Proofpoint provides formal retention and supervisory review programs for all communications to address rigorous compliance measures including FINRA, SEC, and IIROC.

“NexusAI for Compliance redefines digital communication monitoring with AI-powered automation that is unmatched in the market,” said Darren Lee, executive vice president and general manager of Compliance and Digital Risk for Proofpoint. “Regulated organizations trust us to solve the toughest compliance and digital supervision challenges. Today’s innovation announcement builds on Proofpoint’s people-centric compliance vision and commitment to help customers unify, manage, store, investigate, and supervise digital communications to mitigate corporate and regulatory risks.”

NexusAI for Compliance users can focus on meaningful content with out-of-box machine learning models, deploy in-house developed models, or enlist Proofpoint Professional services to build, train, vet, and activate custom models. Proofpoint is making a significant investment in leveraging AI/ML to improve its product capabilities and user experience. Several examples can be found in Nexus Risk Explorer, the Nexus Threat Graph, and now in NexusAI for Compliance.

For more information on NexusAI for Compliance as well as Proofpoint’s Archiving and Compliance portfolio, please visit: www.proofpoint.com/us/nofalsepositives.

^*Gartner, Magic Quadrant for Enterprise Information Archiving, Michael Hoeck and Jeff Vogel, 27 October 2020

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

Image licensed by Pixabay.com

IBM Launches New Watson Capabilities to Help Businesses Build Trustworthy AI

The post Proofpoint Introduces NexusAI for Compliance appeared first on Digital IT News.

Dizzion Announces New Managed Desktop Offering on IBM Cloud to Help Enterprises Manage Their Remote Workforce

Leigh Porter — Tue, 13 Apr 2021 15:52:45 +0000

Dizzion, Inc. announced a new managed desktop offering on IBM Cloud designed to assist enterprises in managing their workforce by making it easier for employees to work remotely in a secured and collaborative environment.

Dizzion’s new managed desktops on IBM Cloud offering provides an upgraded Desktop as a Service environment for VMware Horizon on IBM Cloud users and is ideal for enterprise IT organizations looking for a long-term remote work solution that addresses performance, security and compliance challenges.

Dizzion’s new managed desktop offering on IBM Cloud has been designed to leverage VMware Horizon and other technologies to deliver applications, files, corporate network access, security and settings to an end-user’s computer from network-accessed cloud resources, as opposed to the end-user device itself. The process will offer an optimized experience for employees who work remotely and will enable access from internet-connected devices. The new offering will leverage IBM Cloud as the underlying cloud architecture, including servers, storage, networking, and security, with Dizzion as the managed cloud desktop service.

“Dizzion’s managed desktop offering for IBM Cloud can help address a high-priority IT challenge facing a wide range of organizations in 2021,” says Steve Prather, CEO at Dizzion. “Customers will receive the enterprise-level performance and protection they demand. Employees working with media-intense software from home will find their heavy applications optimized for maximum productivity. In-the-know users will have their confidential data secured when working from remote locations. Plus, with IBM Cloud as the delivery engine and VMware Horizon as the desktop virtualization platform, customers will be able to effectively respond to unexpected change.”

Dizzion customer Arise Virtual Solutions, a global customer experience outsourcing specialist, adopted Dizzion’s managed desktop offering on IBM Cloud and realized success using the solution. Arise expanded to 1,500 desktops, citing PCI-DSS compliance and strong performance levels when using customer service software as differentiators, which enabled the company to win the full outsourced customer service business from a well-known global retailer.

“The Arise® Platform is a premier provider of virtual-first customer support BPO solutions that enable brands to be there for their customers. Leveraging an expansive network of gig-economy service partners, Arise uses innovation to change the way brands think about customer care,” said Ken Braatz, Vice President of Technology Operations at Arise Virtual Solutions. “With the resulting agility, performance and compliance of the new Dizzion Managed DaaS, we proved another level of capability to our clients, which led to increased demand and corresponding expansion. Our clients and service partners depend on us to deliver the optimal customer experience solution while securing their sensitive data. With Dizzion Managed DaaS, we are able to do both.”

Dizzion is leveraging IBM’s Cloud Engagement Fund, established as part of IBM’s $1B investment into its partner ecosystem, to accelerate the company’s global expansion through access to technical resources and cloud credits that support the migration of client workloads to hybrid cloud environments, including IBM Cloud.

“By working with Hybrid Cloud Ecosystem partners like Dizzion, we can help to develop and offer new solutions that address evolving customer and partner challenges. Dizzion’s managed desktop offering for IBM Cloud is engineered to help enterprises address the need to manage more complex remote work environments,” said Willie M. Tejada, IBM Chief Developer Advocate and GM ISV/Build Ecosystem. “Supported by IBM’s Cloud Engagement Fund, Dizzion will be able to scale their offering to help expand operations to help enterprises globally.”

Dizzion’s managed desktop offering on IBM Cloud is available immediately and will replace the Horizon Cloud on IBM Cloud Service, with current customers transitioning to the new offering without having to alter their desktop images, protocols or endpoint devices. Dizzion Managed DaaS offers HIPAA, PCI-DSS, GDPR and SOC 2 Type II-compliant services with a zLink BYOD option that extends compliance to personal end-user device use cases. The offering will be available in the United States, Europe and Asia, with plans to expand globally in 2021.

Dizzion is part of IBM’s Hybrid Cloud Ecosystem, an initiative to support partners of all types — whether they build on, service or resell IBM technologies and platforms — to help clients manage and modernize workloads with Red Hat OpenShift for any cloud environment, including the IBM public cloud. The IBM public cloud is the industry’s most secure and open public cloud for business. With its security leadership, enterprise-grade capabilities and support for open source technologies, the IBM public cloud is designed to differentiate and extend on hybrid cloud capabilities for enterprise workloads.

For more information visit https://www.dizzion.com/managed-daas-on-ibm-cloud/.

VMware and VMware Horizon are registered trademarks or trademarks of VMware, Inc. in the United States and other jurisdictions.

The post Dizzion Announces New Managed Desktop Offering on IBM Cloud to Help Enterprises Manage Their Remote Workforce appeared first on Digital IT News.

Survey of Security Assurance Professionals Finds That 65% of Global Tech Companies Still Manage IT Risks in An Ad-hoc, Reactive Manner

Leigh Porter — Fri, 12 Feb 2021 18:55:40 +0000

Hyperproof released its 2021 IT Compliance Benchmark Report, a survey report containing comprehensive benchmarks on how tech companies are managing IT risks and IT compliance efforts during the pandemic, remote-work environment. The responses come from 1,029 professionals in the tech sector in Dec. 2020. All hold responsibilities for security assurance, information security, IT audits or IT risk management within their organizations.

The results reveal that when it comes to managing IT risks, most organizations understand what “good” looks like in theory. Yet struggles to operationalize important risk management activities are pervasive.

For instance, 65% of all respondents said they currently IT risks in an ad-hoc way, with siloed teams, processes, and multiple, disconnected tools. When it comes to managing IT risks and compliance efforts on a day-to-day basis, one in two respondents said they spend 50% or more of their total time at work on low-level, administrative tasks.

When organizations use multiple, disparate tools throughout their risk management process, collecting critical risk and compliance information is both tedious and difficult. Half of all survey respondents admitted that they have a limited understanding of how well existing risks are managed and limited ability to detect control failures that can lead to undesired risk exposure. In fact, 61% of all surveyed organizations have experienced a compliance violation — such as a data breach or a violation of a privacy law — in the past three years.

However, the research team found that not all organizations suffered equally from security incidents and compliance violations. Organizations that chose to take an integrated approach to IT risk management and made efforts to align their risk and compliance activities are much better at avoiding data breaches and privacy violations than organizations that believe the compliance function’s purpose is to enforce rules and conduct risk and compliance activities in silos.

While 61% of survey respondents overall reported their organization has experienced a compliance violation in the last three years, only 40% of those who take an integrated view of risk management and compliance activities experienced a compliance violation. On the other hand, 71% of all respondents who view the compliance function as the enforcer of rules have experienced a compliance violation in the past 3 years.

To see additional findings from Hyperproof’s 2021 IT Compliance Benchmark Report, please visit https://hyperproof.io/it-compliance-benchmarks

Image Licensed by Unsplash.com

Veeam Expands Google Cloud Partnership and Increases Public Cloud Support

The post Survey of Security Assurance Professionals Finds That 65% of Global Tech Companies Still Manage IT Risks in An Ad-hoc, Reactive Manner appeared first on Digital IT News.

Qualys Introduces SaaS Detection and Response to Manage the Security Posture and Risk of the SaaS Application Stack

Leigh Porter — Wed, 03 Feb 2021 19:58:50 +0000

Qualys, Inc. introduced Qualys SaaS Detection and Response (SaaSDR), which provides a single console for IT and security teams to gain continuous visibility, security and compliance of critical SaaS apps.

Qualys SaaS Detection and Response provides continuous visibility of SaaS applications in a single-pane-of-glass

Powered by the FedRAMP-authorized Qualys Cloud Platform, Qualys SaaSDR streamlines and automates the process of managing SaaS security, risk and compliance. The result is automated, up-to-date inventory and control over SaaS apps, folders and documents to prevent malicious or unintended exposure of sensitive information and deliver a deep understanding of the SaaS apps’ compliance posture. The initial release will provide native support for Google Workspace, Microsoft Office 365, Zoom and Salesforce.

“Qualys SaaSDR helps ImagineX with our Microsoft Office 365 and Google Workspace deployments’ security and compliance. It provides the security team with visibility and control of critical SaaS apps, all from a single screen, strengthening the apps’ security posture. We also see SaaSDR as a key imperative to help guide our customers as they work to enhance SaaS apps’ compliance and shine a spotlight on potential data exposure,” said Tim Salvador, Cybersecurity Practice Director, ImagineX Consulting, LP.

“As applications migrate from on-premises to IaaS and subsequently SaaS, blind spots develop for security analysts as traditional security tools do not have the necessary visibility for SaaS application stacks,” said Frank Dickson, program vice president, security products at IDC. “The reality of the SaaS shared responsibility model is the application of security and maintenance in a SaaS context is fundamentally different as the SOC does not have control of the operating system and application layer. The security, hygiene and management have to be applied using an API-centric approach, leveraging data and identity disciplines. Qualys looks to provide SaaS application visibility to the SOC via frictionless data collection for deeper assessment, supporting CIS policies for Office 365 and Zoom while also leveraging the power of the Qualys posture management technology to augment identity and data context. Qualys SaaSDR provides an easy plug-in solution to assist CISOs in monitoring and managing the data exposure and security compliance of their SaaS applications.”

With Qualys SaaSDR, enterprises have a single solution to manage their SaaS apps, providing:

User and Device Visibility – Automatically inventory SaaS application users and user groups (internal and external) along with the files and folders users own and can access. It also gathers detailed information on endpoints, such as an asset’s details, location, running services, installed software and more, all in a single, unified view.

Powerful Access Controls – Get complete control over users and data access rights to quickly review and granularly assign the proper access levels – all from a single interface.

Data Exposure Insights – Shine a spotlight on SaaS applications and third-party apps to immediately identify security weaknesses like incorrect permissions, at-risk files, file changes, misconfiguration issues, critical vulnerabilities, and exploits using advanced threat intelligence.

Security and Compliance Posture – Realize continuous and automated security posture and configuration assessments for SaaS applications along with enforcement of compliance aligned with industry benchmarks like O365 via CIS, PCI-DSS, NIST, and CIS.

Assess Risk – Leverage the Qualys Cloud Platform to correlate SaaS application data insights such as user access rights and data exposure, with additional security telemetry, like user location, time of access, file changes, host vulnerabilities and configurations, advanced threats, and more to manage risk.

“Qualys’ massive investment in our Cloud Platform provides the relevant context, real-time analysis, visibility and scale needed to support detection and response offerings such as SaaSDR,” said Philippe Courtot, chairman and CEO of Qualys. “Qualys SaaSDR’s native connectors build security into SaaS apps providing clarity and an unparalleled level of detail and insight – all from a single screen – so that customers can ensure their SaaS apps are secure and compliant.”

Upcoming Features
In the second half of 2021, Qualys will add proactive response capabilities such as alerting on data exposure and automated remediation to the app so customers can fix compliance and exposure issues and automatically patch misconfigurations, vulnerabilities and threats with one click. Qualys will also add support for additional solutions such as Slack, GitHub and Microsoft Teams, along with customized controls to enable targeted security posture assessments.

Pricing and Webinar
SaaSDR is generally available; pricing starts at $20 per user per SaaS application. To participate in the free trial, visit www.qualys.com/trySaaSDR. To learn more, attend the webinar, Navigating the SaaS Technology Stack for Continuous Visibility and Compliance, on March 3.

Image licensed by: Adobe Stock

New Report: Top Three Ways to Drive Boardroom Engagement around Cybersecurity Strategy

The post Qualys Introduces SaaS Detection and Response to Manage the Security Posture and Risk of the SaaS Application Stack appeared first on Digital IT News.

Compeer Financial Delivers Superior User Experience with Citrix®

Taylor Graham — Tue, 19 Jan 2021 14:46:16 +0000

Our lives are driven by technology and we expect it to be always on and perform flawlessly – especially at work. It’s a tall order, but one that just got easier to deliver at Compeer Financial, thanks to Citrix Systems, Inc. Leveraging Citrix Analytics for Performance, the Farm Credit cooperative is able to proactively identify performance issues and quickly resolve them before they slow employees down.

“Diagnosing technology issues is always a challenge as it requires determining whether they are related to corporate infrastructure, employee factors such as their choice of device or ISP, or something else beyond our control,” said Scott Ament, Director Technical Operations, Compeer. “With Citrix Analytics for Performance, our service desk teams can solve issues faster than ever before – sometimes even ahead of when a user calls in for support. “

A next-generation service that goes beyond monitoring server-side infrastructure, Citrix Analytics for Performance enables IT administrators to identify performance issues at the individual user level and proactively address them to deliver a superior experience that engages employees and keeps them happy and productive.

Using a proprietary machine learning engine that integrates real-time telemetry from Citrix Virtual Apps and Desktops, the solution quantifies a user’s experience into a unique “UX Score,” taking into account not just machine performance, but items that impact application access such as user logon time, network latency and even network stability. Using this score, IT administrators can:

Quickly uncover performance degradation and identify root causes
Reduce help desk calls related to application performance issues
Easily identify groups of users or specific business locations experiencing poor performance
Track performance trends and user experience anomalies
Effectively scale environments based on actual usage and load
Holistically assess and report on system performance and user experience

And the Compeer service desk teams are using it to do just this.

“Our service desk teams have become much more proactive,” Ament said. “Ahead of a service call, they can identify if a user seems to be having a poor experience and take action to fix it. We have reduced escalations and alleviated the delays that sometimes occur in seeking further assistance, as a result, and that has helped us deliver a better team member experience.”

And the single pane of glass that Citrix Analytics for Performance provides has been key to delivering these results.

“Our service desk reps can verify when other vendors and partners implement a fix and see the results in the Citrix Analytics for Performance graphs and views,” Ament said. “Having all the data and insights consolidated in one place has been very helpful, as our teams no longer have to look at data in several tools and can act more quickly.”

Compeer joins more than 400,000 organizations around the world who are using Citrix digital workspace solutions to power a better way to work. Click here to learn more about these offerings and the value they can deliver.

Image licensed by Unsplash.com

AWS Recognizes Citrix for Digital Workplace Expertise

The post Compeer Financial Delivers Superior User Experience with Citrix® appeared first on Digital IT News.