Meet Industry-Specific Regulatory Requirements

Companies deploying SOA face the challenge not only of thwarting malicious attacks and overcoming complexity, but also of enforcing and verifying compliance with an increasing number of government and industry regulations.

AmberPoint provides security and auditing capabilities that enable organizations to meet specialized regulatory requirements in their respective industries. From flexibly identifying regulated data, such as cardholder data for PCI or EPHI for HIPAA, to adding multifactor authentication for FFIEC compliance, AmberPoint can uniquely address the compliance needs of organizations deploying SOA.

• Federal Financial Institutions Examination Council (FFIEC): AmberPoint provides easy-to-deploy multifactor authentication support for service consumers within an SOA, enabling both the end user and the user's computer to be authenticated simultaneously.
• Health Insurance Portability and Accountability Act (HIPAA): AmberPoint provides role-based access control, integrity, confidentiality and auditing of transactions that involve electronically protected health information (EPHI).
• Payment Card Industry Digital Security Standard (PCI/DSS): AmberPoint provides role-based access control, integrity, confidentiality and auditing of transactions that involve payment cardholder information.
• Sarbanes-Oxley: AmberPoint provides role-based access control, integrity, confidentiality and auditing of transaction that involve financial information.