TrustedAgent GRC supports several initiatives within the Defense Industrial Base (DIB) including cyber incident management, NIST SP 800-37 Rev 1., DIACAP and CNSSI-1253, and DIACAP to NIST RMF Migration. Additional TrustedAgent also streamlines activities related to DFARS 252.204-7012 and NIST 800-171.
2. Agenda
• Risk Management and Compliance Challenges
• Advantages of Good Risk Management
• Introducing TrustedAgent
• TrustedAgent Overview
• TrustedAgent and Defense Industrial Base
• TrustedAgent Benefits
• Content Libraries
• Prominent Clients
• TrustedAgent Demo
• Contact Information, Q&A and Next Steps
3. Regulations, standards
and control
requirements are
complex, continue to
increase, becoming
more confusing to
understand, even more
costly to implement.
Regulations, standards
and control
requirements are
complex, continue to
increase, becoming
more confusing to
understand, even more
costly to implement.
Risk Management and Compliance
Challenges
PCI
ISO
Sarbanes-Oxley
HIPAA/HITECH
FFIEC
FISMA GLBA
DIACAP
4. Silos of information
and replications of
compliance activities.
Collaboration and
productivity is
limited, time-
consuming and
bottlenecked by
people and activities.
Silos of information
and replications of
compliance activities.
Collaboration and
productivity is
limited, time-
consuming and
bottlenecked by
people and activities.
Risk Management and Compliance
Challenges
5. Reporting is time-
consuming,
inefficient, and error-
prone. Lack of
visibility into the
organization security
posture.
Reporting is time-
consuming,
inefficient, and error-
prone. Lack of
visibility into the
organization security
posture.
Risk Management and Compliance
Challenges
6. Incur financial
penalties, lose
brand recognition,
lose productivity,
face legal
liabilities, or
undergo greater
scrutiny from
regulators.
Risk Management and Compliance
Challenges
Incur financial
penalties, lose
brand recognition,
lose productivity,
face legal
liabilities, or
undergo greater
scrutiny from
regulators.
7. Advantages of Good Risk Management
• Keep senior management and board members out of trouble.
• Avoid fines and loss of operating license resulting from
non-compliance.
• Minimize costs relating to stock volatility, lawsuits, public relations, breach
notification, forensic, and remediation measures when incidents occur.
• Reduce costs through reduced operational loses and
improved efficiency of business operations and processes.
• Better visibility into the risk profile of the organization for
improved decision support and risk-adjusted key performance indicators.
• Improve brand recognition, public and shareholder value and
confidence, and relationships with industry regulators, business partners,
insurers and other stakeholders.
8. Introducing TrustedAgent
• Comprehensive, enterprise platform that integrates, standardizes, and
automates existing IT GRC processes.
• Enable organizations to meet the challenging, complex, and ever-
changing requirements of PCI, SOX, HIPAA, NERC, GLBA, FISMA, and
many others.
• Improve existing business processes and best practices using
frameworks such as ISO 27001/27002 and COBIT, to achieve cost
reduction, eliminate waste and gain operational efficiencies.
11. TrustedAgent and Defense Industrial Base
• Enable organizations to streamline risk management and
compliance activities:
• NIST SP 800-37 Rev 1., DIACAP and CNSSI-1253
• DIACAP to NIST RMF Migration
• Common Control Support across Regulations
• Overlays for CNSSI to ICS, CNSSI to Space Platform, CNSSI to
Classified Information
• Enable organizations to streamline key DHS continuous
diagnostics and mitigation activities:
• Hardware Asset Management
• Software Asset Management
• Vulnerability Management
• Risk Management
• Plan and Response to Events
• Document Requirements, Policy, etc.
12. TrustedAgent and Defense Industrial Base
• Enable organizations to better manage and streamline
compliance with DFARS 252.204-7012:
• Safeguarding Requirements and Procedures for Unclassified
Controlled Technical Information
• NIST SP 800-171
• Cyber Incident and Compromise Reporting
• Subcontractor and Supply Chain Risk Management
• Dashboard analytics and reporting
13. TrustedAgent Benefits
• Provide an enterprise solution that integrates,
standardizes, and enhances the management of security
risks, privacy, and regulatory compliance across the
enterprise.
• Reduce time and costs associated with risk management
activities through collaboration, dashboard analytics, and
automated reporting and document generation.
• Provide a standard of care to minimize security risks, legal
liabilities, and penalties, and to facilitate communications with
shareholders, customers, regulators, and insurers.
• Continuously monitor and assess critical business assets
and functions to gain visibility into and improve their
security and compliance posture.
14. Content Libraries
Support any open source
content as well as any
commercial third-party
content.
Trademarks and copyrights are properties of their respective owners.
18. Contact Information, Q&A, and Next Steps
Trusted Integration, Inc.
525 Wythe Street
Alexandria, VA 22314
703-299-9171 Main
703-299-9172 Fax
www.trustedintegration.com