SanerNow includes regulatory compliance templates for PCI, HIPAA, ISO 27001, NERC, NIST 800-53, and NIST 800-171. Compliance profiles can be created and customized to suit an organization’s needs. Once the profile is deployed, SanerNow monitors the organization’s assets for deviations from the profile and helps fix deviations. SanerNow performs daily checks to detect configuration discrepancies that can then be manually or automatically fixed.
SanerNow supports three aspects of compliance:
- Default Compliance
- Generic Compliance
- Regulatory Compliance
Default Compliance - By default, each operating system will have individual rules. SanerNow sets the values for this.
Generic Compliance - Generic compliance is designed to correspond to the different operating systems and their security settings such as Account Lockout Policy, Administrative Templates, Authentication Types, etc.
Regulatory Compliance - Regulatory compliance defines standards, such as the PCI, HIPAA, NIST, and NERC standards. Organizations are required to be aware of and to take steps to meet relevant laws and regulations.
To access the Compliance Management tool:
- Logon to SanerNow using your SanerNow credentials.
- Select an account to manage by clicking the icon at the upper left corner of the window. A dashboard with the summary view of the account is displayed.
- Click the SanerNow icon on the header. Click the Compliance Management icon. The Compliance Management dashboard is displayed.
To read the full article, please open the below pdf attachment.