COMPLIANCE

Sarbanes Oxley, PCI DSS, GPG13, Government Connect Code of Connection, ISO 27001/2 & ITIL

Do you struggle to manage multi-layered compliance?

IT compliance is about putting precision into your IT infrastructure, so at EQALIS our compliance solutions are built on the industry’s sharpest IT search, IT monitoring and IT automation tools. These not only manage the process with ease but drive IT efficiencies and savings too.

The EQALIS A³ approach ensures that your compliance needs are properly analysed, importantly audited and automated for full peace of mind. At the heart of many EQALIS IT compliance solutions is Splunk, the IT search engine, for which we have built specific add on applications tailored to each compliance requirement, including PCI DSS, Local Government Code of Connection, GPG13 and ISO 27001 and 27002.

PCI DSS (Payment Card Industry Data Security Standard) is a set of comprehensive requirements for enhancing payment account data security to help facilitate the broad adoption of consistent data security measures globally. It’s a many-faceted standard that includes requirements for management, policies, procedures, network architecture, software design and other critical protective measures. It’s intended to help organisations proactively protect customer account data.  Section 10 of PCI DSS requires a secure central logging solution. Splunk is that solution.

Local Government CoCo (Code of Connection) comprises the security controls with which all UK local authorities must be compliant before their connection to the UK government wide WAN will be activated. From 2009 the CoCo was updated and all local authorities’ compliance is measured against the criteria.  GPG13 Protective Monitoring guide now informs many of the CoCo requirements and EQALIS have been instrumental in helping both local and central government departments meet the requirements of GPG13.

ISO 27001 and 27002 has since October 2005 been implemented as best practice for information security management. Over three hundred UK organisations are independently certified against the standard. It has become the basis for security policy best practice.

EQALIS also sources, tests and customises other leading edge IT management, monitoring and automation tools to build differentiated IT compliance solutions for UK organisations. These products include Splunk, Netwitness and NetMRI (Infoblox).