TraceSecurity, a pioneer in cloud-based IT governance, risk and compliance (GRC) solutions, today introduced the TraceCSO API, a new enhancement to the recently launched TraceCSO risk-based information security program which extends TraceCSO’s leading risk-management capabilities to customers’ existing security solutions, while incorporating them into TraceCSO for centralized management of customers’ information security programs.
While TraceCSO comes equipped with its own comprehensive risk management and security solutions, its new SOAP-enabled API allows customers to leverage their investments in existing security solutions – such as vulnerability scanners today, and coming support for SIEM systems, IDS/IPS solutions and endpoint monitoring/management tools – while centralizing visibility and automating management to eliminate costly and time-consuming siloed management approaches. At the same time, the TraceCSO API extends all of TraceCSO’s functionality – such as automated monitoring of proper implementation, functionality and effectiveness of security controls from a risk, audit, and compliance perspective – to the existing security solutions, while inheriting their data for TraceCSO’s overall risk-management and information security program.
TraceCSO is the industry’s first cloud solution for a holistic and risk-based information security program that delivers comprehensive visibility and accountability for improved risk and compliance profiles across all areas of an organization, including cloud environments. TraceCSO allows organizations of any size, industry or security skill set to evaluate, create, implement and manage a comprehensive risk-based information security program, to protect their organizations from today’s top information security risks, including cloud security and “bring your own device” (BYOD) concerns.
“With so many organizations already having security solutions in place, the new TraceCSO API allows them to continue using their existing technology, while significantly enhancing their investment by integrating these solutions and their outputs into TraceCSO’s comprehensive information security programs,” said Brady Justice, TraceSecurity director of systems engineering. “While TraceCSO comes with its own comprehensive security tools, TraceSecurity quickly responded to industry demand to ensure customers have the most complete information security program to best meet their needs, while leveraging the security solutions of choice already in operation.”
Using the common SOAP language, TraceCSO’s API enables seamless integration and automation of disparate security solutions into TraceCSO’s information security program solution. Using the TraceCSO centralized visibility and management interface, organizations will realize greater strategic value from their existing technology investment since resulting data from these solutions will integrate into their complete risk-based information security program and can be leveraged through TraceCSO’s workflow, ticketing, alerting, reporting and governance capabilities. With the ability to support a broad range of security solution categories, TraceCSO API’s initial support covers a wide variety of vulnerability management scanners. Additional security solutions, including SIEM systems, IDS/IPS solutions and endpoint monitoring/management tools, will be supported in the future.
Unlike current information security program solutions, which simply provide a console and no remediation tools, TraceCSO identifies and prioritizes risk to an organization’s information – including network vulnerabilities – and identifies, implements and audits security controls. To help organizations stay current with the latest regulatory mandates specific to their industry, TraceCSO leverages a global database of hundreds of authorities and more than 25,000 regulations and citations.
The TraceCSO API is included within the subscription fee of TraceCSO. TraceCSO is available from TraceSecurity, with further information available by calling 1-800-610-5276.
TraceSecurity (TraceSecurity.com), a leading pioneer in cloud-based security solutions, provides IT governance, risk and compliance (GRC) management solutions. The company’s cloud-based services help organizations achieve, maintain and demonstrate security compliance while significantly improving their security posture. With more than 1,400 customers, TraceSecurity supports the security and risk management efforts of organizations in financial services, healthcare, high-tech, insurance, government, education and other regulated sectors. Founded in 2004, the company has executive offices in Silicon Valley and offices in Baton Rouge, La. For more information, call (225) 612-2121 or visit the website.
© 2012 TraceSecurity. TraceSecurity and TraceCSO are registered trademarks of TraceSecurity. All rights reserved worldwide.