|
|
|
pinSpark Policy Enforcement
|
- Define Segregation of Duty (SOD) Policy
The
pinSpark wizards enable easy design of user access policies
to ensure employees are accessing data in a manner that
complies with whatever federal, state or corporate policies
need to be followed. The software provides general templates
for meeting SOX and HIPAA regulations, which the CISO can
use to define more specific IT access rights, by role and by
system. Also, pinSpark provides consulting and services to
assist with the process.
|
- Monitor violations
When a
segregation of duty violation is detected in a user's
assigned privileges, pinSpark sends an alert to the IT
administrator who can then decide how to remediate the
problem. The pinSpark system also includes a programming
function that allows a CISO to define specific actions the
pinSpark software should take automatically if a violation
is discovered -- such as sending a message to the
provisioning system to temporarily block an account.
|
- “What-if” Analysis
Administrators can run an analysis to determine whether
changes in a role would violate policy or heighten the
security risk, before actually implementing changes.
|
|
