McAfee and RSA Release Security and Compliance Solutions for Enterprises

McAfee and RSA signed a partnership at the beginning of the year and now they plan on releasing a new solution that will make sure enterprises benefit from a better visibility into their state of security and a better business-level management of the risks involved.

“The McAfee and RSA solution provides greater visibility into the state of security and compliance across the enterprise infrastructure and enables a more comprehensive understanding of the business’ risk and compliance posture,” revealed Dave Anderson, senior director of Security Management at McAfee.

“The integration allows organizations to utilize McAfee security management products to manage system-level security while also incorporating data and findings from those products into their risk and compliance management processes within the RSA Archer eGRC Platform.”

The new services will help ensure that the platform level information is consistent between GRC and IT processes while the systems in the infrastructure will be managed by McAfee's policy orchestrator tool.

Basically, companies will have a better view of their network's security and how the potential risks might affect the business performance of the firm.

David Walter, senior director of RSA, The Security Division of EMC, states “This integrated offering provides customers the opportunity to improve IT-GRC programs with information from security management processes. The Archer eGRC platform understands business criticality – adding this enables customers to prioritize the issues being documented in McAfee ePO against their business objectives.

"This enables better business decisions about where resources are placed, resulting in an effective risk-based way to respond quickly to new threats, address program deficiencies and reduce vulnerabilities across all domains and lines of business in the enterprise.”

These types of solutions are very welcome in a world where security specialists believe that hackers have an upper hand as they can deploy automated attacks that affect the integrity of their defence structures.

Unfortunately, as we've recently seen, these measures are extremely difficult to implement due to the large number of devices that form an enterprise network, not to mention the human factor involved which again seems to be the weakest link in the safekeeping of a business from internet threats.