ARMONK, NY - 16 Dec 2005: IBM today announced new software that automates the way banks, hospitals and other organizations can audit and report on information -- from sensitive financial data to patient health care records -- as they deal with various compliance mandates.
The new version of Tivoli Access Manager acts as an "all-in-one audit center" for customers. Normally, when companies are audited, they must endure the cumbersome process of checking who has access to each application -- such as email systems, portal sites or different internal HR or financial databases. For example, if an employee has access to five different applications, IT administrators must take the time to check each set of systems to gather data. The new version of Tivoli Access Manager automates that process by capturing the data in one centralized location and then generating automated compliance reports.
This can help companies address Sarbanes-Oxley requirements by allowing a company's internal IT security team to control who has access to what applications, which helps prevent employees from reaching confidential health records or from trying to read early quarterly financial information before it becomes publicly available. The centralized reporting capability helps compliance officers to quickly detect and stop unauthorized access to information.
"IBM access management software enables companies to cut through the clutter of compliance," said Susanne Rocha-Taylor, Global and Americas Leader, Business Risk Management, IBM Business Consulting Services. "With Tivoli's new software, organizations can automate the way they collect information for compliance reports, which will cut the time and cost it takes to meet regulatory mandates."
When combined with Tivoli Federated Identity Manager, these capabilities are extended outside of companies, enabling IT staffs to centrally audit and report on business partner and third-party access to services. Tivoli Access Manager also provides full access management for web-based businesses, using IBM Tivoli Directory Server or almost any other repository that stores user names and passwords. The software also helps companies with their audit needs within a services oriented architecture (SOA) by centrally auditing and reporting on distributed SOA business applications.
AMR Research Alert recently reported that the 2006 spending to meet the requirements of the Federal Compliance Act will be $6 billion. Also according to AMR Research, technology is playing an increasingly significant role in the integration of Sarbanes-Oxley compliance initiatives into business processes. Throughout 2005, companies reported that they were refining existing business and IT controls in preparation for automation efforts using technology. *
IBM helps organizations better manage information technology (IT) resources, tasks and processes in order to meet ever-shifting business requirements and deliver flexible and responsive IT service management. Tivoli's portfolio spans software for security, storage, performance and availability, configuration and operations, and IT lifecycle management. The software enables companies to manage IT infrastructure more effectively, ensure that IT infrastructure is compliant with business policies and regulations, and reduce complexity by leveraging best practices, process integration and automation across the entire infrastructure. For additional information, go to www.ibm.com/tivoli.
Tivoli Access Manager for e-business v.6.0 is available now.
Information Management, Lotus, Tivoli, Rational, WebSphere, Open standards, open source
1 *AMR Research Alert, "SOX Spending for 2006 To Exceed $6B," John Hagerty, November 29, 2005
IBM and Tivoli are trademarks of International Business Machines Corporation in the United States, other countries, or both. Other company, product or service names may be trademarks or service marks of others.