Tripwire Expands its Security Policy and Regulatory Compliance

By CIOReview | Wednesday, May 11, 2016
JAMES B. JOHNSON, President and Chief Executive Officer, Tripwire

JAMES B. JOHNSON, President and Chief Executive Officer, Tripwire

PORTLAND, OR:  Tripwire, security and compliance solutions provider recently acknowledged that its enterprise coverage for security policy and regulatory compliance has been increased by over 200 new policies across 26 policy types between 2015 and 2016. The company also asserted that during the same time period it has retarded 100 outdated policies.

Tripwire Enterprise offers the broadest, comprehensive security and compliance coverage in the industry by simplifying visibility, automation, assessment and remediation of thousands of configuration variables. It has a library of nearly 700 policies and platforms to strengthen its security and compliance fleet. It furnishes proactive configuration hardening, endpoint change detection and remediation, and offers audit-ready compliance reports. “Ensuring your IT infrastructure is configured properly is a crucial component of cybersecurity and is required by every major security framework and compliance regulation,” says Dwayne Melancon, Chief Technology Officer, Tripwire.

The Tripwire Enterprise policy library supports various operating systems, including Windows, VMware, ESXi, SUSE and Amazon Linux. It also supports a wide array of database vendors, including IBM DB2, Oracle and Microsoft SQL Server; and numerous enterprise applications and network devices. Tripwire imparts over 28,000 unique, ready-to-use tests to quickly ensure system integrity and policy compliance and proactively detect endpoint threats. It delivers easy-to-build custom rules that enable security and IT professionals to address compliance and security issues related to their organization. “The Tripwire Enterprise policy and platform coverage library is the most comprehensive in the industry, and we will continue our commitment to deliver a broad library of internal and external policies and regulations affecting enterprises,” adds Dwayne.

The new Tripwire Enterprise policy coverage incorporates a range of new platforms, and ICS devices including: VMware ESXi 6.0, Windows 10, Red Hat Enterprise Linux 7, GarrettCom DX940, GarrettCom 10RX and NovaTech Orion. 

With the expansion, Tripwire Enterprise policies now complies to North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) version 5; Payment Card Industry Data Security Standards (PCI DSS) version 3.1; Control Objectives for Information and Related Technology (COBIT) version 5.0; Information Technology Security Guidance (ITSG-33); and Sarbanes-Oxley (SOX) updated for COBIT version 5.0. “Tripwire’s products understand change on critical endpoints inside the data center as well as the business context associated with those assets,” says Jim Johnson, CEO, Tripwire.