You can use Cybernance to see results according to specific security compliance standards. Some organizations in certain industries may find it helpful to see their results and corresponding priorities in terms of FFIEC, HIPAA, ISO, PCI, or others. Cybernance allows a User to easily select a framework to showcase those specific compliance results in an easy-to-read dashboard.
Compliance Module – HIPAA
The Health Insurance Portability and Accountability Act (HIPAA) is a federal law signed in 1996 that protects personal health information, or PHI. The HIPAA Module within Cybernance focuses specifically on the HIPAA Security Rule, which lays out guidelines for protecting electronic personal health information, or ePHI.
The Security Rule segments controls into three sections: Administrative, Physical, and Technical Safeguards. Cybernance’s HIPAA Security Compliance Module helps you report on your organization’s progress toward achieving with the HIPAA Security Safeguards.
What It Does
The National Institute of Standards and Technology (NIST) in collaboration with Health & Human Services (HHS) recently published a “crosswalk” that defines the relationships between NIST controls and the HIPAA Security Rule. The HIPAA Module within Cybernance uses those control definitions to explain how your organizations security controls affect your ability to achieve HIPAA Security Safeguards. When this mode is activated, the Dashboard will show your organization’s score relative to the 3 types of HIPAA Security Safeguards:
Compliance Module – FFIEC
The Federal Financial Investigations and Examinations Council (FFIEC) has published guidelines for financial services companies to assess and manage their cyber risk. These assessments have two components. The first is called the “inherent risk” of an organization, which derives from its size, position in the market, type of services, and so on. The second is an assessment of security controls that have been implemented, which are largely based on NIST principles.
Cybernance’s FFIEC Compliance Module helps you report on your organization’s progress toward aligning with the FFIEC guidelines.
What It Does
The FFIEC Module contains crosswalks that explain how your organizations security controls affect your FFIEC readiness. When this mode is activated, the Dashboard will show your organization’s score relative to the 5 “Domains” of cyber risk management identified by FFIEC.