EDS Unveils New Cyber-Security Tools
Las Vegas
EDS has announced the launch of a suite of cyber-security tools designed "to help companies assess the risk of security and privacy threats."
The companys announcement came at Comdex Fall 2001, the megalithic computer technology conference held here earlier this month.
EDSs three new software toolsEDS Security Assessment Tool, EDS Privacy Assessment Tool and EDS Cyber Risk Management Toolare designed to meet EDSs goal of making security and privacy a core component of business, according to the Plano, Texas-based company.
EDS representatives who deliver security-consulting services use the tools. They are not available to outside parties.
EDS said the tools will help mitigate security and privacy risks and legal liability, as well as help identify business opportunities that may be supported using security and privacy techniques.
The software is said to help create a foundation for security and privacy planning, design, and implementation.
Also, according to the company, the tools will "reduce costs associated with managed risks, increase profitability by implementing enterprise-wide, end-to-end solutions, and identify evolving threats and vulnerabilities."
Since the Sept. 11 terrorist attacks, "organizations large and small are recognizing the critical importance of being prepared for a wide range of potentially devastating security and privacy threats. These new tools will help them get there," according to Al Decker, director of global security and privacy services for EDS.
Mr. Decker said companies need to create trust in the security of their operations by providing "protection of digital and physical assets," as well as guarantee privacy protection via "responsible handling of personally identifiable information."
Company security and privacy, Mr. Decker advised, need a commitment at the chief executive level.
"This can no longer be delegated," he said. Once executive awareness and commitment are raised, he added, companies can develop and implement a plan that should include regular testing and upgrading.
Planning a security and privacy program, Mr. Decker noted, begins with educating employees and business partners, followed by a thorough assessment of vulnerabilities and risks.
He said the EDS "Cyber Risk Management Tool" in particular deals with key insurance issues. "It helps underwriters understand customer risks," he explained.
EDS said the Cyber Risk tool is a Web-based online "e-risk" security assessment "based on commonly accepted underwriting risk management practices."
The "Security Assessment Tool," said EDS, incorporates best practices from several standards organizations. The "Privacy Assessment Tool" incorporates best practices, standards and regulatory requirements from legislation, including the Health Insurance Portability and Accountability Act and the Gramm-Leach-Bliley Financial Services Modernization Act.
The tools can be tailored to specific industries, countries and regulatory environments, according to Mr. Decker.
Each tool, the company said, can be delivered online via the World Wide Web or offline via trained EDS security and privacy consultants.
Mr. Decker said the cost of an initial assessment by EDS of a companys security vulnerabilities might range from $50,000 to $250,000, depending on the size of the company and the scope of the assessment needed.
EDS also provides training courses and consulting for security programs, he noted.
For more information about EDS's products, go to www.eds.com.
Reproduced from National Underwriter Property & Casualty/Risk & Benefits Management Edition, November 26, 2001. Copyright 2001 by The National Underwriter Company in the serial publication. All rights reserved.Copyright in this article as an independent work may be held by the author.
© Arc, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to TMSalesOperations@arc-network.com. For more information visit Asset & Logo Licensing.