        |
|
Aveksa Compliance Manager is the market leading solution that fully automates the compliance monitoring, reporting, certification, remediation and change validation of user entitlements, making it possible for organizations to easily establish sustainable access compliance.
Aveksa Compliance Manager enables organizations to:
• Gain enterprise-wide visibility into all user entitlements to all information resources
• Monitor who has access to what, how they got it and who approved it
• Automate controls to continuously determine whether a user’s access creates any policy
violations
• Make business managers accountable for reviewing who should have access and
certifying appropriateness
• Provide continuous compliance through an incremental review process based on change
events
• Validate access change through a closed-loop process
• Authoritative system of record that provides the evidence of access compliance for auditors
With Aveksa Compliance Manager, the IT security and compliance team is able to get enterprise-wide entitlements and roles under a consistent, automated and unified governance framework. Aveksa Compliance Manager is the system of record that demonstrates the evidence of compliance, ensures that business managers are accountable for making access rights decisions and streamlines the compliance reporting process.
• Secure, automated collection— A secure, automated access collection and aggregation mechanism designed for rapid deployment acquires identity, entitlement and role information together with associated metadata from enterprise information resources. Access information is normalized, producing a unified view that is complete and correlated across users, entitlements, roles and information resources.
• Automated access certifications— IT security and compliance teams can easily configure workflows for business users to review and certify user entitlements and roles. Reviews are easy to understand and tailored to the needs of business users. The closed-loop workflow ensures accountability and a full audit trail of actions.
• Intuitive, business-friendly user interface—Ensures end-user adoption of the solution by dramatically simplifying the access review and certification process for all constituents involved.
• Reporting— Ad hoc reporting, together with an extensive set of built-in reports, delivers detailed, summary analyses of users, applications, entitlements, roles and compliance status.
• Controls automation— Easy-to-use business rules enable security and compliance policies associated with identities, entitlements, roles and certifications to be tested or automatically enforced. Segregation of duties (SoD) rules can be enforced across a heterogeneous environment that includes ERP, mainframe, midrange, client-server and web/cloud based applications.
• Integration with identity management— The remediation of user entitlements and roles is supported across the enterprise through integration with an organization’s existing access enforcement and user provisioning infrastructure.
For more information, download the Aveksa Compliance Manager datasheet.