Financial Security & Compliance Solution

Financial & Banking Institutions: Reduce Liability by Gaining Real-time Visibility into Your Endpoints

You are sophisticated and well-armed yet are fighting an on-going battle of risk and compliance. Why? because you and your staff are fighting blind.

Can you and your team:

  • Threat_reportIdentify all the devices that are connected to your networks?
  • Detect what is running—or attempting to run—on or off your network?
  • Reduce dwell time by detecting attacks at the moment of compromise, respond to endpoint attacks in real-time, and remediate threats with complete root-cause analysis to prevent data leakage?
  • Ensure your systems are in compliance with industry standards and regulations?
  • Quickly tell when your configuration has drifted outside of your compliant golden image?
  • Close the governance gap and ensure your endpoints are protected?

Endpoints are Blind Spots that Lead to Liability

Endpoint Liability

If you’ve deployed antivirus on your endpoints—you’re blind to zero-day and other advanced attacks. If you’re relying on scan-based security—you’re missing pockets of time and likely targeted attacks infiltrating your organization. And if you’ve only secured your perimeter—you’re missing any threats that land on your endpoints.

Endpoints are the biggest risk to the industry due to the way people access them, lack of visibility and the inability to  continuously monitor what/how they are being used.

The Bit9 + Carbon Black Security and Compliance Solution for the Financial and Banking Industry

Bit9 + Carbon Black’s advanced threat detection, incident response and prevention solution for endpoints and servers help financial organizations close the security and regulatory gaps exploited by targeted attacks and unknown malware that antivirus solutions cannot stop. Built on a positive security approach, Bit9 + Carbon Black converges compliance and security, providing visibility, detection, response and protection, and automating and managing compliance with SOX, GLBA, BASEL II, FRC / CSOX, SSAE16 / SAS70 / ISAE 3402 and other regulations. With Bit9 + Carbon Black, you can;

Ensure_Security

The result is a focused security and compliance program that aligns resources and budgets with real threats and real risk

Gain the ability to:

  • Get real-time visibility into your critical system resources: Always-on, real-time sensors let you know what’s happening on every endpoint so you can achieve continuous compliance and to prevent, detect and respond to threats that evade traditional security defenses.
  • Mitigate weakness in third-party services and applications: The Bit9 + Carbon Black Threat Intelligence Cloud offers comprehensive, aggregated advanced threat intelligence to provide some of the industry’s most powerful, correlated and accurate threat insight.
  • Automate notifications of compliance violations: Alerts inform you when an unauthorized change has been attempted or when system configuration drifts from a compliant state.
  • Ensure support for legacy, orphaned, or end-of-life application and operating systems: extend the life of and protect your Windows Server 2003 and Windows XP machines by providing compensating security controls that ensure the continued security and compliance of both new and legacy systems.
  • Monitor and prevent changes to your critical files and directories: File integrity monitoring and control helps you maintain alignment with your compliance policy and block any unauthorized changes to protected assets.
  • Generate compliance reports with one click: Immediate reporting provides details about changes to critical assets and how those changes relate to specific trust policies, regulations standards and aggregates big data to relieve data fatigue.

2002 Sarbanes-Oxley Act (SOX)

The 2002 Sarbanes-Oxley Act (SOX) requires public companies adhere to a set of standards for financial reporting and corporate disclosure. SOX compliance has placed an enormous burden on companies. Not only does SOX call for the establishment of IT controls over financial systems, but it requires companies consistently evaluate these controls for efficacy. Without an automated solution to control and audit change on financial systems, achieving SOX becomes a time-consuming exercise that pulls valuable IT staff away from critical operational responsibilities.

Simplify SOX Compliance

Even if the reality of SOX feels complicated, the spirit behind it is simple: to secure sensitive data, organizations need to understand exactly what is happening with their financial systems at all times. This cannot be done with a point-in-time snapshot; it requires a systemic approach that allows organizations to achieve compliance without so tightly controlling their financial systems that they are rendered useless.

The Bit9 Security Platform simplifies SOX compliance with:

Visibility:

  • Live Inventory: real-time view of all applications on all systems at all times
  • Baseline Drift: establish baselines to define approved configurations
  • Compliance at a Glance: visually isolate, from as many as 250,000 systems, those out of compliance
  • Audit Trail: track software changes regardless of source or content

Control:

  • Application Whitelisiting: ensure only trusted and approved software is allowed to run
  • Real-time Alerts: instantly know when a system drifts away from your baselines
  • Change-aware Baselines: automatically add approved software to baselines
  • Device control: unauthorized use of personal storage devices can be blocked on a user or device basis

Learn more about the Bit9 Security Platform.

GLBA – Gramm-Leach-Bliley Act

The Gramm-Leach-Bliley Act (GLBA) requires companies defined under the law as “financial institutions” to ensure the security and confidentiality of this type of information. As part of its implementation of GLBA, the Federal Trade Commission (FTC) issued the Safeguards Rule, which requires financial institutions under FTC jurisdiction to have measures in place to keep customer information secure.

The Bit9 Security Platform enhances GLBA compliance with its visibility capabilities.  The ability to audit directories containing financial data as well as controlling and building trust around the software used to work with this financial data is key to maintaining and assessing compliance.  Bit9 also assists in ensuring the compliance and audit of the security policy out to the end-users.

The Bit9 Security Platform enhances compliance of GLBA with its ability to audit directories containing financial data as well as controlling and building trust around the software used to work with this financial data is key to maintaining and assessing compliance.  The platform also provides the only endpoint sensor that continuously monitors and records all activity on an endpoint, server or fixed-function device.

Companies are also required to perform security risk assessments, develop and implement security solutions that effectively detect, prevent, and allow timely incident response, and perform auditing and monitoring of their security environment.

The Bit9 advanced threat protection solutions for endpoints and servers provides real-time file tracking that facilitates a live inventory of all executable files that currently reside on all of your systems as well as any executable that has ever been on a computer regardless of its current status, allowing you to identify high-risk files quickly and accurately.

Bit9 provides controls minimize the risk of malicious, illegal and unauthorized software that can create vulnerabilities and enable targeted attacks by preventing the installation or execution of unauthorized applications and the use of unauthorized portable storage devices. In addition, Bit9 also assists in ensuring the compliance and audit of the security policy out to the end-users.

BASEL II

BASEL II consists of recommendations by bank supervisors and central bankers to improve the consistency of capital regulations internationally, make regulatory capital more risk sensitive, and promote enhanced risk-management practices among international banking organizations.

The Key functional area for Bit9 that enhances BASEL II compliance is built around visibility.  The ability to audit directories containing financial data as well as controlling and building trust around the software used to work with this financial data is key to maintaining and assessing compliance.

FRC (UK) & Bill 198 / CSOX (Canada)

The Financial Reporting Council (FRC) empowers regulatory and audit agencies in the UK to monitor and take action to promote the quality of corporate reporting and auditing as well as enforce the controls that are associated with the security of financial information.

Bill 198 / CSOX empowers the Ontario Securities Commission to develop guidelines to protect investors in public Canadian companies by improving the accuracy and reliability of corporate disclosures made pursuant to the securities laws.  The law was tabled after SOX in the United States and makes it mandatory to have full audit capability on financial information.

The Bit9 Security Platform enhances the ability to control and audit areas within the enterprise that contain critical or sensitive financial data.  It can both audit and report on all software that is responsible for accessing such data while providing complete coverage on any software changes that could lead to undesired access to the data.  Bit9 can also assist with enforcing, controlling, and auditing the financial security compliance policy throughout the organization in order to prove awareness and consumption of the general end user policy.

Statement of Standards for Attestation Engagements (SSAE) Compliance Standard 16

The American Institute of Certified Public Accountants developed the Statement on Auditing Standards SSAE 16 (formerly SAS70). Organizations that successfully complete a SSAE 16 audit have been through an in-depth audit of their control activities, including controls over IT and related processes. The standard allows a company to provide a third-party certification of its internal controls to customers.

The Bit9 Security Platform enhances the ability to control and audit areas within the enterprise that contain critical or sensitive financial data.  It can both audit and report on all software that is responsible for accessing such data while providing complete coverage on any software changes that could lead to undesired access to the data.  Bit9 can also assist with enforcing, controlling, and auditing the financial security compliance policy throughout the organization in order to prove awareness and consumption of the general end user policy.

video
Video: Bit9 + Carbon Black Explained in Two Minutes

eBook:
Cracking the Endpoint: Insider Tips for Endpoint Security

Download Now

eBook:
The Convergence of Security and Compliance

Download Now
Bit9 + Carbon Black
DataXu