Bradford Networks
 

 

 

 

 

 

 

 

Contact Us

Regulatory Requirements

Compliance with regulatory requirements is one of the key IT security policy drivers for network managers in the financial, insurance, healthcare, and government sectors, as well as all publicly-traded companies. A comprehensive Network Access Control (NAC) strategy can ease this pressure by helping to ensure compliance while minimizing operational and cost impacts.

The table below lists key requirements common to all regulations and how NAC functionality addresses each of them.

Regulatory Requirement NAC Functionality
Policies • Role-based access
• Endpoint compliance
• Usage policy enforcement
Authentication • Registration
• Authentication
• Directory integration
• Group membership
Access Control • Allow, restrict or deny access
• Customized access by role, location, time
Remediation • Self-remediation
• Captive gateway
• Alarms and notifications
• Automatic remediation
Audit • Detailed audit trails
• Connection logs with machine location, time and duration
• Registrations logs with successes and failures
• Endpoint scan results
• Physical address and logical address correlation


PCI

The credit card industry has responded to numerous high-profile security breaches by developing and evolving the Payment Card Industry Data Security Standard, or PCI DSS. Supported by all major credit card issuers, this mandatory standard impacts all organizations that accept credit cards. PCI DSS requires that cardholder data be processed and stored on secure systems on secure networks.

Bradford has a solution that address 9 of the 12 high-level PCI DSS requirements. >> Read more


Financial Services

With fears of identity theft on the rise, and greater concern about the integrity of online transactions, companies in the financial services industry - credit card companies, banks, lenders, brokerages, etc. - must protect the integrity of customers' financial information. GLBA regulations require organizations to take all necessary precautions to safeguard this data, including identifying threats, managing data access, and continually monitoring the effectiveness of the organization's policies and safeguards

Bradford solutions address 15 of 52 GLBA control areas. >> Read more


Insurance
Insurance firms are governed by numerous regulations such as HIPAA, Sarbanes-Oxley, and GLBA, and as such, must guard customers’ private healthcare and financial information. >> Read more

Healthcare

Hospitals, doctor's offices, public health organizations, and any other organization that deals with medical records and health information must ensure the integrity of electronic health data. With increased use of electronic health transactions - from telemedicine to doctors logging into hospital systems remotely - HIPAA regulations require stringent network controls.

Bradford solutions address 11 of 18 HIPAA standards.>> Read more


Government - US
US government agencies – at the local, state, and federal level – must secure networks in the face of growing regulations, such as FISMA, with shrinking IT budgets. With homeland security concerns, recently publicized examples of VA and Social Security data being compromised, and expanding regulatory environment, government organizations must maintain and document a broad range of network security processes. >> Read more

Government - UK

The UK government has created the Government Secure intranet (GSi) for all UK government organizations and local governments. The Code of Connection (CoCo) has been developed to ensure secure connections to the GSi network. CoCo describes a set of security controls which must be in place by March 31, 2009.

Bradford solutions address 18 of 28 CoCo control areas. >> Read more


Publicly Held Companies
All publicly traded companies in the US are affected by Sarbanes-Oxley, considered by some to be the most sweeping change to US securities law since the 1930s. Passed in response to accounting scandals, Sarbanes-Oxley (SOX) requires all companies who come under the jurisdiction of the Securities and Exchange Commission to closely regulate their accounting practices. >> Read more

 

 

home | about us | products | solutions | news & events | partners | support | contact us
© 1999-2009 Bradford Networks. All rights reserved.        Privacy Statement
PCI HIPAA GLBA CoCo Requirements Mapping NAC Director