ScriptLogic.com: Windows Desktop Management…Point, Click, Done!

Solutions
Compliance Center
  SOX
  HIPAA
  FISMA
  GLBA
  ITIL
  COBIT
  NIST 800-53 / FIPS 200
  ISO 17799
  PCI
Home » Solutions » Compliance » GLBA Solutions

GLBA Solutions

The Standard

The Financial Modernization Act, also known as the “Gramm-Leach-Bliley Act” (GLBA), was signed into law in 1999 and includes provisions to protect consumers’ personal financial information held by financial institutions which include not only banks, securities firms, and insurance companies, but also companies providing many other types of financial products and services to consumers.

There are three principal parts to the privacy requirements: the Financial Privacy Rule, Safeguards Rule and pretexting provisions. The Financial Privacy Rule seeks the protection of customers’ personal financial information by financial institutions, while the pretexting provisions seeks to protect consumers from individuals and companies obtaining personal financial information under false pretenses.

The Challenge

The Safeguards Rule requires all financial institutions to design, implement and maintain security controls to protect customer information. So unlike other regulatory compliance legislation where it is the proof of the presence of controls that is regulated (usually through auditing and reporting), with GLBA, it is the actual presence of the controls that is mandated.

The Solution

ScriptLogic solutions can assist in brining every aspect of a financial organization’s Windows network into compliance in the areas of Active Directory, server and desktop security. The GLBA control requirements can be boiled down to just three required actions which can be performed with ScriptLogic solutions:

Insure Security of Customer InformationActive Administrator's Active Templates enforce appropriate permissions to modify AD, which limits an administrator’s ability to grant access to customer information through group memberships. Security Explorer can establish appropriate permissions and report on the current state of access to customer information store on Windows servers.

Protect against Anticipated ThreatsPatch Authority Ultimate can be used to patch both desktops and servers against known OS and application vulnerabilities. Desktop Authority offers two optional components to compliment its already comprehensive array of desktop configuration elements to aid in protecting against threats. The Patch Deployment for Desktops option can patch OS and applications on clients while the Spyware Detection and Removal option can scan, detect and eliminate all known Spyware from clients.

Protect against Unauthorized Access – While both Active Administrator and Security Explorer are used to establish appropriate access to customer information, they are also used to reactively report on the current state of security along with Enterprise Security Reporter which provides reporting on NTFS, share, registry, user and group security.

 White Papers
Implementing GLBA Compliance Controls with ScriptLogic

 Related Products
Active Administrator
Desktop Authority
Patch Deployment for Desktops
Spyware Detection and Removal
Enterprise Security Reporter
Security Explorer

 Compliance Resources
View the GLBA Legislation
FIPS200
ISO17799
COBIT
ITIL

Home | Solutions | Products | Where to Buy | Support | Partners | Company
Active Administrator | Desktop Authority | Desktop Authority Image Center | BridgeTrak | Desktop Authority RM Gateway | Enterprise Security Reporter | File System Auditor | LiteSpeed
Desktop Authority MSI Studio | Patch Authority Ultimate | Secure Copy | Security Explorer
Active Directory Management | Application Deployment | Desktop Management | Server Management | Software Inventory
Copyright ©2008 ScriptLogic Corporation | Terms of Use | Privacy Policy | Anti-Piracy Information | Site Map