You don’t know what you don’t know. OpenPMF Security Policy Auditor™ gives you consolidated visibility into your technical security policies. It provides guidance where to focus your cybersecurity efforts, and helps you document cybersecurity for audit & compliance.
Using proven information modeling formal testing techniques, OpenPMF Security Policy Auditor™ analyzes information about your technical security policies and your IT environments. OpenPMF Auditor™ is a solution that includes the OpenPMF™ cloud and professional services. OpenPMF Security Policy Auditor™ is based on ObjectSecurity’s unique, award-winning OpenPMF™ security policy automation platform and on scientific work done by the National Institute of Standards and Technology (NIST and commercialized by ObjectSecurity® as part of an SBIR.
Guidance for Security Policy implementations
OpenPMF Security Policy Auditor™ includes access to the OpenPMF Security Policy Auditor™ cloud service, and to ObjectSecurity’s professional services. This makes OpenPMF Security Policy Auditor an easy-to-use solution that can involve you as much or little as you prefer. It is designed to be rapidly customizable to fit to your particular audit/test requirements and IT landscape.
And by providing consolidated visibility into your technical security policies, OpenPMF Security Policy Auditor is an ideal tool to provide guidance for a subsequent technical security policy implementation using OpenPMF Security Policy Automation.
- Import and consolidate technical security policy information from many sources, such as networks, systems, applications, identity & access management systems etc.
- Author your audit/test requirements in intuitive, general terms you choose
- Automatically test your test requirements against the imported information using formal methods
- intuitively visualize the test results and create documentation