IBM Security Active Governance Framework + Xacta
Automating and centralizing ITRM operations across the enterprise
The rising costs of compliance and its challenges are real.
Too many global and local compliance requirements
No single source of truth, and too many disparate programs and tools
An increasingly complex hybrid enterprise
Too many controls to test and report on, as well as audit fatigue
Visibility to assure leadership risks are being mitigated
What is IBM Security AGF?
IBM Security Active Governance Framework (AGF) operationalizes cybersecurity compliance and regulatory risks across the enterprise and provides:
- Proactive governance services that are tailored to provide assurance to CISOs, regulators, and auditors
- Risk reduction strategies that are scalable, monitored and managed to resolution
- Assurance that security and compliance programs are effectively protecting critical data with central management and reporting
- Address both the manual and automated aspects of compliance across cloud, on prem and hybrid environments with Xacta from Telos.
AGF is the key to time- and cost-saving compliance…
… made possible through the power of automation
AGF Packages
Small $
Up to 5 projects and 2,500 assets*
Medium $$
Up to 10 projects and 5,000 assets*
Large $$$
Up to 25 projects and 12,500 assets*
1 Week
Compliance workshop
- A workshop to understand the goals, pains, and impacts related to cyber risk management
- Co-create the future of cyber risk management
- Prioritize the components of the future created
2 Weeks
Design solution
- Project definition, prioritization, and deployment plans established
- Designs an automated solution that aligns to the workshop results based on industry standards and customer requirements
8 – 16 Weeks
Build and configure
- Securely configure the platform per the project plan and solution design requirements
- Collect compliance data from customer tools and ingest into the platform for analysis
Ongoing
Steady state services
- C-level governance and advisory cadence
- Risk reduction strategies established
- Oversight of remediation management activities
- Audit support
- Platform support
AGF automates the most time-consuming aspects of cybersecurity compliance, risk and audit activities such as control selection, validation, reporting, auditing and monitoring across the enterprise.
AGF Packages include:
- Design Thinking workshop
- Telos Xacta software annual license fees for 3 years
- SaaS hosting on AWS
- Initial setup of platform
- Ongoing security services for 3 years of platform and advisory services
*A project is an accreditation or assessment boundary (e.g. geographic location, department / organizational function, system/workload function, etc.)
*An asset includes any hardware, equipment, software or operating system defined within the project
Contact us to learn more about IBM AGF and Xacta
Additional Resources
You can pay now or pay later, but compliance comes with a true cost – one that has increased at least 45% since 2011.
The importance of privacy and security has grown exponentially over the last five years, bringing with it a host of new regul…
Dimple Ahluwalia, VP and Global Managing Partner at IBM Security, recently wrote a blog post highlighting the launch of IBM A…
During this on-demand webinar, the presenters review the GRC marketplace and discuss key drivers that are compelling organiza…
Learn how automated cloud compliance helps enterprises manage regulatory risk without inhibiting innovation.
Xacta reveals risk in real-time and delivers proof of compliance with all major financial security standards for all types of…
Discover how Xacta automates cyber risk management and audit prep for healthcare organizations.
Xacta for FedRAMP is an all-in-one tool for managing, testing, and documenting the compliance posture of your cloud offering….
Xacta streamlines the Risk Management Framework with automated workflows and document generation.