Score Cards report

The BMC Defender Cards type report appears in the Audit tab but is somewhat different from other reports. These types of reports do not have Advanced settings, and do not have a Generate Report Database or Generate option. The reports simply map data items to well-known compliance standards and categories, tabulating up the number of messages associated with threads, and thereby providing evidence to an auditor that BMC Defender Server is correctly configured.

Note

BMC Defender Server comes with a default configuration suitable for use with PCI-DSS, HIPAA, SOX, GLBA, and many other security standards; the BMC Defender Administrator does not have to add extra software to meet one particular compliance standard over the other.

All these standards are essentially the same, and BMC Defender can satisfy many parts of these standards simultaneously.

It is a common misconception to consider that PCI-DSS provides a different type of security monitoring over HIPAA and other compliance standards.

Example

The User Activity, Device Activity, Perimeter, and other reports described in this section, furnish useful evidence necessary to satisfy all types of security standards and audit requirements.

What the Score Cards furnish is the explicit mapping to these requirements so that each category of required compliance is easily verified by an auditor or manager. The reports permit easy identification of the security standard requirements, and show that data is being collected for that requirement.

Score Card report application notes

The Score Card facility provides a ready-to-run mapping between the out-of-box defaults and PCI-DSS, HIPAA, and General Security. These might be sufficient for most sites and auditors.

It is also possible to come up with other Score Cards that are highly specific for the organization, such as Firewall Performance Score Cards, or Mainframe Security Score Cards; these reports simply map the organization's basic requirements and policies to the various threads collecting data.

Example

If an organization is especially interested in PCI-DSS Requirement 11.1, the operator could create such a score card (pointing to highly specific threads) to make it easy to audit the type of data being collected in compliance with that specific PCI-DSS Requirement.

Note

The actual mapping of the Thread to requirement is fairly arbitrary. 

A requirement might be partially satisfied by several threads equally well. Likewise, there might be no particular thread to satisfy a requirement, necessitating the addition of a new thread to the BMC Defender system for the expressed purpose of satisfying the Score Card report.

Note

The Score Card is simply a method of mapping the data being collected to a specific set of requirements. The Score Card itself does not make a system compliant, nor does the absence of a Score Card make a system less compliant. The Score Card is intended only to record the various reasons for threads, their counts, and how they correspond to security requirements that might exist for the organization.

This section provides information about the following topics:

Related topic

BMC-Defender-Audit-Report-facility


 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*