Symantec adds compliance features to ESM 6.0

A new version of Symantec's Enterprise Security Manager, announced Monday, comes with prepackaged "best practice" policies and compliance modules for a variety of regulatory regimes, as well as support for more operating systems.

Symantec Enterprise Security Manager (ESM) 6.0 is the latest edition of Symantec's vulnerability assessment and policy compliance tool and adds features to make it easier for IT administrators to compare their network's security against industry security benchmarks such as ISO (International Organization for Standardization) 17799, Symantec said.

ESM customers will receive preconfigured vulnerability checks that are based on broad industry standards such as ISO and the SANS Institute Inc.'s Top 20 list of vulnerabilities, according to Mark Ungerman, director of product management at Symantec.

For companies concerned about complying with new U.S. federal government regulations such as the Health Insurance Portability and Accountability Act of 1996 (HIPAA), ESM 6.0 comes with policies designed to test HIPAA related mandates affecting the protection of confidential patient information.

For example, HIPAA policies might look at the management of account privileges or passwords on ESM-managed systems, Ungerman said.

That would allow health care organizations could assess which of their ESM-managed servers is in compliance. For systems that are not in compliance, administrators could use the ESM interface to "drill down" and determine which HIPAA-related controls are not in place, he said.

Tests for compliance with the Sarbanes-Oxley Act of 2002 are also available, but are not as comprehensive in determining compliance with that law as the HIPAA tests, Ungerman said.

The new packaged policies and regulatory compliance modules do not change the core ESM assessment technology, but simply make it easier for administrators to use ESM to benchmark their network's security, Ungerman said.

ESM does not include patch- or configuration-management features to patch security or compliance holes that have been identified. However, Version 6.0 is more tightly integrated with Symantec's Security Management System. That means that noncompliance issues can now be routed to other Symantec products such as Incident Manager and used to create tasks for IT security staff, Ungerman said.

The tighter integration brings regulatory compliance issues in step with the way other software security vulnerabilities are handled, he said.

In an effort to give more options for customers with heterogenous networking environments, the new version of ESM also adds security and vulnerability checks for midrange servers such as Microsoft Corp.'s Windows Server 2003 and IBM Corp.'s iSeries server platforms, according to Ungerman.

ESM 6.0 is available immediately from Symantec resellers and distributors. The ESM Manager software sells for around US$2,394. ESM agent software ranges in price from $114 for an agent that runs on Windows or UNIX workstations to $1,995 for an agent that runs on iSeries servers, Symantec said.

Join the newsletter!

Error: Please check your email address.

More about IBM AustraliaiSeriesISOMicrosoftSANS InstituteSymantecThe SANS Institute

Show Comments