Compliance Infrastructure Management Service Provider, Consult2Comply, Offers New Application Program Interface (API) Service to Clients and eGRC Vendors

Reston, VA (PRWEB) May 03, 2012

Consult2Comply (C2C), a premier regulatory compliance infrastructure management service provider, announced today the availability of their new Application Program Interface (API). This new offering is a common interface that allows communication between multiple compliance systems and software components. This API facilitates client support, functionality and allows C2C’s automated premier GRC tool, Compliance Mapper, to communicate with other GRC vendor related software systems.

This new interface leverages the power of Compliance Mapper to assist an organization in building and achieving a sustainable business-centric regulatory compliance framework and allows clients and GRC vendors access to their extensive regulatory content library using various formats. Information, regulatory content and data can now be quickly and easily imported and merged it into a common framework platform then tied together using standard XML and an open-ended structure.

Steve Crutchley, CEO of Consult2Comply said, “C2C has imported vast amounts of regulatory content into Compliance Mapper – over 400 standards, regulations and best practices – and mapped it across various regulatory landscapes. The power of these pre-built mappings is now available to clients or eGRC/enterprise software vendors through an easy integration with C2C’s API web services. In addition, we are now responding to client and vendor requests to provide active and live links within the frameworks we’ve created. We understand organizations need options because of tooling consolidation so creating content in complimentary formats, offering multiple platforms and an integrated approach is our way of helping them respond to the challenge”.

About Consult2Comply

Consult2Comply is a premiere GRC firm that provides Compliance Infrastructure Management Services, and compliance software and mapping solutions to support international regulatory standards and best practices for commercial and government enterprises. C2C’s web-based, automated compliance platform is designed to improve business performance and audit readiness across the entire organization. Consult2Comply’s blended approach of Managed Compliance Services™ — software plus services as a compliance solution – and Compliance Infrastructure Management™ helps organizations align existing compliance infrastructure with the ever changing regulatory environment. Over 25 years in auditing and consulting in information security and asset management inspired the creation of C2C’s compliance, risk and audit management tools as well as their practical, business-focused approach.    

For More Information Contact:

Dave Teti – Vice President, Business Development for Consult2Comply

703- 391-6010

dteti(at)consult2comply(dot)com

Media Contact:

Pamela Zacha – The Nimbus Communications Group

Marketing & Public Relations

301-467-0555

pamela(at)nimbus(dot)bz

©Copyright 1997-

, Vocus PRW Holdings, LLC.
Vocus, PRWeb, and Publicity Wire are trademarks or registered trademarks of Vocus, Inc. or Vocus PRW Holdings, LLC.

This tip on  how to delete a Maximo application from Bruno is a a lifesaver and perfect timing because I was wondering how to this exact thing the other day. Related Posts:Maximo Conditional Expression How To’sFormatting data with MaxTypeDelete an item from Item Master in Maximo 7Hide or disable ‘new user’ registration on the Maximo [...]
Maximo Times

In this tutorial, I will show you what are the basic steps to creating a new application within Maximo.  This tutorial won’t go into details about custom java class but it will show you what you need to do to add a new application.  For simplicity sake, this new application won’t have any business logic, [...]
Maximo Times

Denim Group Expands Software Development, Mobile Application Security Assessments and Developer Training to Mobile Platforms

San Antonio, Texas (PRWEB) November 14, 2011

Denim Group, the leading secure software development company, today announced it has expanded its services to the mobile arena, now offering secure software development, mobile application security assessments and developer training to help make mobile devices a more trusted platform for business and e-Commerce. Mobile applications offer a unique challenge to security in that a single application involves dealing with native code, web services as well as complex application programming interfaces (APIs). In addition, mobile devices provide capabilities unavailable on the desktop or laptop. As a result, there are risks specific to mobile applications that are significantly different from web application environments, and must be dealt with appropriately.

“The importance of the mobile market is clear as not only have mobile device shipments soared beyond PCs, over eight billion mobile application downloads occurred in 2010 alone, and are predicted to increase exponentially, however, there are significant security concerns because mobile applications can be manipulated to reveal sensitive data if they are not built correctly,” said John Dickson, Denim Group principal. “Denim Group is offering software development, security assessments and developer training services focused on overcoming the unique challenges of the mobile platform to address those concerns and help advance development of secure mobile applications across the industry.”

Smartphones and tablet platforms have capabilities beyond that of the typical desktop because of the integration of technologies such as cameras, GPS locators, and audio recorders as well as network resource access, allowing organizations to build innovative applications that deliver unique service solutions to both customers and employees. However, these capabilities create additional security risks because as sensitive data and operations move from servers to mobile devices, there is a greater opportunity for data breaches and the exposure of other security vulnerabilities.

The issues enterprises must address when deploying custom mobile applications include protecting sensitive corporate data on devices that are prone to loss or theft. Even encrypted data on devices may be at risk because of application key handling and data storage issues. In addition, the open networks mobile devices use to communicate are often unencrypted, making that data subject to capture as well. Relying on the security of the mobile device to protect the server-side assets is a mistake many application developers make. However, network services deployed to support mobile applications without server-side protections such as authentication and authorization present attractive targets for exploitation by malicious attackers. Finally, mobile applications can be reverse engineered to reveal private client information or corporate credentials on those devices, forcing the application to unintentionally expose sensitive corporate information.

Denim Group’s new services are intended to help organizations building and deploying mobile applications for their customers and employees to proactively address these associated risks. Practices such as integrating threat modeling into the software development lifecycle can help to identify potential issues during the design stage of application development and minimize costly post-deployment remediation. Security testing for mobile applications and their server-side infrastructure is also an important check to ensure security efforts during the application’s design and development were successful.

In an additional announcement today (see Denim Group Launches Industry’s First Secure Mobile Software Development e-Learning Courses through ThreadStrong), Denim Group also announced the industry’s first e-Learning courses designed to teach developers how to secure mobile applications. Taught through its ThreadStrong Learning Management System (LMS) – compatible program, Denim Group’s training can be particularly valuable for mobile application developers who may not be versed in secure design and development practices and may also be creating applications for unfamiliar platforms with unknown security characteristics. The Overview of Mobile Application Security class familiarizes new students with the challenges specific to the mobile platform. Supplementing the introduction are two initial classes focused on Authentication and Authorization for the Android OS and the iPhone OS platforms. Denim Group will be adding additional in-depth secure mobile training classes in the next few months.

In addition to e-Learning for mobile, ThreadStrong offers a variety of secure application

programming courses that cover topics such as Secure Coding for Java and .NET applications, Threat Modeling, Software Security Remediation Basics as well as a publicly free class explaining Cross-Site Request Forgery (CSRF). Denim Group also offers public classes and instructor-led training, as well as in-house mentorship services.

Denim Group’s services are based on its experience assessing and building mobile applications for a variety of industries and its methodology uses emerging industry standards such as those defined by the Open Web Application Security Project (OWASP). These capture the major classes of vulnerabilities and weaknesses that might exist in systems incorporating mobile applications. In fact, Dan Cornell, leading technologist for Denim Group, is spearheading the platform-specific guidance section for OWASP which will produce detailed information on how to handle the security issues for specific mobile platforms. Additionally, Denim Group examines security risks and usability weaknesses that are common in a mobile computing environment, including, but not limited to the system’s application permissions model, encryption APIs and hardware-supported encryption capabilities as well as the security of network communications and data transmissions to name a few.

Denim Group has identified the likely threat agents and vulnerable components associated with specific application classes to produce a holistic structured view that enumerates possible areas of weakness. Every application is built or assessed with a dataflow diagram, a list of identified threats, detailed countermeasures for these threats, and any areas where additional security measures should be considered kept in mind. Automated source code scanning and manual source code review are used to ensure the security state of the mobile application as well as its associated services. Additionally, Denim Group performs manual security testing of the web services supporting an application. This testing simulates the activities of an attacker who would bypass the mobile application client to attack web services directly as well as attackers who could gain access to user devices in order to try and recover sensitive data stored on the device.

Denim Group’s services are designed to ensure the additional layers of security and access control needed are built into the mobile applications developed for leading mobile device smartphone and tablets including the Android, Blackberry, the Apple iOS and Windows Phone 7 operating systems. While increasing confidence in mobile business, banking, e-Commerce and data access is critical, enabling a seamless mobile application user experience is just as important to ensure corporate resources are protected from unauthorized access without any usability impact to the end user. Denim Group’s suite of services enable organizations to address security concerns for mobile applications in a proactive manner to reap the benefits of creating new and innovative applications without exposing the company’s assets to undue risk.

About Denim Group

Denim Group is the leading secure software development firm. The company builds custom large-scale software development projects across multiple platforms, languages and applications. What makes Denim Group unique is that the company brings significant core competencies in software security to the table, offering an innovative blend of secure software development, testing and training capabilities that protect a company’s biggest asset, its data. Denim Group customers span an international client base of commercial and public sector organizations across the financial services, banking, insurance, healthcare and defense industries. Its depth of experience building large-scale software development systems in a secure fashion has made the company’s leaders recognized experts in their fields. Denim Group has been recognized as one of the 5,000 Fastest Growing Company’s by Inc. Magazine several years in a row, and has won multiple awards including its recent accolades as one of the best places to work in San Antonio. For more information about Denim Group visit http://www.denimgroup.com

###

©Copyright 1997-

, Vocus PRW Holdings, LLC.
Vocus, PRWeb, and Publicity Wire are trademarks or registered trademarks of Vocus, Inc. or Vocus PRW Holdings, LLC.

Related Enterprise Asset Press Releases

We can already add custom modules to main Go To dropdown menu, but here are two tutorials from IBM on how to re-position the menu items with detailed instructions on updating the backend database to achieve what you want. Changing Application Listings within the Go To Changing the Sub Menu Positions With the Go To According to [...]
Maximo Times

Here is an interesting post on using the signature option to hide tabs for certain security groups. 1. Sign in to Maximo as maxadmin; 2. Go to System Configuration -> Platform Configuration -> Application Designer; 3. Select the application that has the Tab that you would like to hide; 4. Click Select Action -> Add/Modify [...]
Maximo Times

Have you wanted to add an attachment option to the Location application or any application for that matter?  The following instructions were written to add the attachment function to a new application from IBM.  [IBM Support] Related Posts:Everything you need to know about IBM Maximo 7.5Maximo links of interest 7-28-2010Adding A Picture Image To A [...]
Maximo Times

Audience: Customers, Level 2 & 3 Support, Services, GTS, ITD, GBS, Business Partners and Sales Abstract: This STE will cover: – Domain types – Example usage – Demo – Reference. Date: June 24, 2011 10:00 AM Eastern US Presented by: May On Content This is the Presentation for the live session: NOTE: The Presentation document [...]
Maximo Times

Abstract Audience: Customers, Level 2 & 3 Support, Services, GTS, ITD, GBS, Business Partners and Sales Abstract: This STE will cover: – Domain types – Example usage – Demo – Reference. Date: June 24, 2011 10:00 AM Eastern US Presented by: May On Content This is the Presentation for the live session: NOTE: The Presentation [...]
Maximo Times

Dallas, TX (PRWEB) December 5, 2006

The Avantis unit of Invensys Process Systems today announced that it has developed a new business system integration module for the Avantis.PRO enterprise asset management (EAM) software application. The new module, developed in conjunction with Microsoft, will provide standard integration between Avantis.PRO R4.1 and Microsoft® Dynamics™ AX Release 4.0 and Microsoft Dynamics GP Professional 9.0 business management applications. (Formerly Microsoft Axapta and Microsoft Great Plains) When available early in 2007, this important addition to the Avantis integration suite will eliminate much of the time and effort typically involved with integrating appropriate information from plant asset management systems into enterprise-level financial applications.

“As a Microsoft Gold Certified Partner, Avantis has already demonstrated the highest level of expertise in creating and implementing solutions based on Microsoft technologies, such as our award-winning Invensys.CM real-time equipment conditioning monitoring capability,” commented Neil Cooper, General Manager of the Avantis unit of Invensys Process Systems. “Our new business system integration module builds on this foundation to ensure a standard, ‘out of the box’ integration solution for Avantis users who also use Microsoft Dynamics. It will help to support full and open communication access throughout the business enterprise.”

“This new integration solution represents another important cooperative development effort to emerge from the strategic, long-term relationship between Microsoft and Invensys,” said Glenn Bray, Senior Director, Industry Solutions — Microsoft Business Solutions. “It brings together world-class business and EAM solutions from Microsoft and Avantis to provide a complete ERP solution for mid-market manufacturing clients.”

For more information, contact info@avanitis.net or visit www.avantis.net

About Avantis

For more than 20 years, customers throughout the world have relied on Avantis enterprise asset management (EAM) solutions to improve resource productivity by driving down operating costs, minimizing the risk of unplanned downtime and maximizing financial return on capital assets. Avantis is part of the Invensys Process Systems group.

About Invensys

Invensys is the world leader in industrial asset performance management. In addition to its rapidly expanding Global Solutions and Performance Management services groups, Invensys’ automation businesses includes industry-leading brands such as Foxboro, Triconex, SimSci-Esscor, Wonderware, and Avantis, whose products are installed in more than 100,000 plants across the world. These range from small hybrid and batch plants to the world’s largest upstream projects, refineries, gas plants, petrochemicals plants, power plants, and pulp and paper mills.

For more information on Invensys’ process automation businesses, please visit www.invensys.com/ps. For more information on Invensys’ groundbreaking InFusion enterprise control system, please visit www.infusionecs.com.

The Invensys Group (www.invensys.com) is headquartered in London and is listed on the London Stock Exchange, with approximately 30,000 employees working in 60 countries.

Avantis, Foxboro, I/A Series, SimSci-Esscor, Triconex, and Wonderware are trademarks of Invensys plc, its subsidiaries, or affiliates. All other brands and product names may be trademarks of their respective owners.

# # #

More Eam Software Press Releases