eBook

IT Auditor’s Guide to Security Controls and Risk Compliance

Governance, Risk and Compliance professionals face multiple challenges. They must, of course, ensure that their organizations are meeting the minimum requirements of the appropriate standards. Many organizations must comply with multiple standards covering privacy, corporate financial data, Protected Health Information and credit card data. Fortunately, the overlapping standards agree on a single concept; implementing appropriate security controls to protect information from improper disclosure.

However, GRC requirements do not exist in a vacuum. Organizational objectives must also be supported. Critical functions can be disrupted if business needs are not considered when establishing compliance activities. In addition, providing evidence that the appropriate controls are in place and enforced is a requirement of any audit. Investing in selecting the right policies, controls and solutions leads to more successful audits and security that is more reliable.

VMware Carbon Black’s approach to compliance is simple. Organizations should include relevant stakeholders in building Compliance Control Policies to meet regulatory standards while supporting business goals. Control Policies dictate which assets are covered by each Standard and what actions users can execute for each asset. By grouping similar classes of assets and users, policies can be logical to users, enforcement is automatic and audits are simplified. This paper will review creating Compliance Control Policies and six key controls supported by VMware Carbon Black.

To view this ebook, complete the form below.

DOWNLOAD EBOOK

Take Control of Your
Multi-Cloud Environment

73% of enterprises use two or more public clouds today. While multi-cloud accelerates digital transformation, it also introduces complexity and risk.

VMware Cross-Cloud™ services enable organizations to unlock the potential of multi-cloud with enterprise security and resiliency.

Build & Operate Cloud Native Apps
Give developers the flexibility to use any app framework and tooling for a secure, consistent and fast path to production on any cloud.

Connect & Secure Apps & Clouds
Deliver security and networking as a built-in distributed service across users, apps, devices, and workloads in any cloud.

Run Enterprise Apps Anywhere
Run enterprise apps and platform services at scale across public and telco clouds, data centers and edge environments.

Automate & Optimize Apps & Clouds
Operate apps and infrastructure consistently, with unified governance and visibility into performance and costs across clouds.

Access Any App on Any Device
Empower your employees to be productive from anywhere, with secure, frictionless access to enterprise apps from any device.

Anywhere Workspace

App Platform

Cloud & Edge Infrastructure

Cloud Management

Desktop Hypervisor

Security & Networking

Run VMware on any Cloud. Any Environment. Anywhere.

On Public & Hybrid Clouds

On Private Cloud & HCI

Solutions

Anywhere Workspace
Access Any App on Any Device Securely

App Platform
Build and Operate Cloud Native Apps

Cloud Infrastructure
Run Enterprise Apps Anywhere

Cloud Management
Automate and Optimize Apps and Clouds

Edge Infrastructure
Enable the Multi-Cloud Edge

Networking
Enable Connectivity for Apps and Clouds

Security
Secure Apps and Clouds

By Industry

Manage your Multi-Cloud Environment

For Customers

For Partners

Working Together with Partners for Customer Success

Tools & Training

Services

Support

Marketplace

Blogs & Communities

Customers

Events

IT Auditor’s Guide to Security Controls and Risk Compliance