|
||||
MENTIS has devised simple solutions to difficult data governance, risk, compliance, and automation problems. We provide the only set of preventative solutions for databases, along with powerful detective tools. The ineffectiveness of traditional approaches Organizations have employed governance and risk mitigation procedures for years, but they have traditionally been fragmented or even duplicated across business teams, locations, and IT systems. Data theft has not only exposed inefficiencies in the traditional IT governance approach, but has also revealed how essential proper information management is to the entire GRC strategy. Further complicating matters, the whole concept of what constitutes sensitive information has become a moving target, as legislation and industry standards redefine what must be protected and how. One man’s trash, another man’s treasure Sensitive data, such as Personally Identifiable Information (PII) or intellectual property, shows up in often overlooked places like cloned testing databases. Such non-production databases are disposable and not particularly valuable – unless you are a data thief. Then they are a gold mine. Companies are gaining awareness that sensitive data is not confined to HR or Production systems, but is collected in other systems and accrue from other sources as well. Finding PII is not an obvious task. Though it appears to be stored in a single field or column, PII repeats across multiple databases, versions, modules and applications. It is accessible by current or former employees, contractors, or consultants who hold passwords or decryption keys. Partial information in multiple locations can be combined into one record, exposing a company to theft and non-compliance. Fundamentally, a single line of new code could accidentally expose highly sensitive data to the wrong set of eyes. The simplicity of MENTIS MENTIS has years of experience in compliance, audits, databases, data security, and best practices. We put our expertise into our design, so our products and services easily bring different GRC groups, who speak different languages, into one conversation. MENTIS products are intuitive and address specific needs for internal security and compliance groups. Easily implemented and maintained, our tools give IT the freedom to support more strategic business goals. MENTIS automates many of the functions that would normally take months of procedural documentation. Reverse engineering is nearly impossible and there are no passwords to lose. Instead of scripts or rules and regulations that are difficult to train and maintain, IT Managers can point and click to intelligently protect information – and do so within hours rather than days or weeks. Auditors can review at-a-glance control and compliance reports. Security Officers can examine unauthorized database access down to the user, timestamp, and program, and can pinpoint the exact information that was exposed. Compliance Officers can quickly review new code prior to its entry into the production process. Employees can spend their time on more value-added work, rather than on the time-consuming data gathering that legislation such as Sarbanes-Oxley requires. In addition, MENTIS has built a set of Industry Best Practices into our solutions. This keeps you flexible and able to more quickly respond to attempted security breaches, comply with multiple acts of legislation, and close gaps created by employee turnover. This is the age of technology, right? MENTIS uses it to your advantage. |
|
|
|
|
|
|
