CA is promising to lower costs of managing compliance, and improve enterprise-wide IT risk management with its latest release of Security and Governance Products.

GRC Manager 2.5 offers features to help simplify and automate key compliance processes and the ability to integrate with CA Role & Compliance Manager, CA Compliance Manager for z/OS, and CA IT Client Manager.

It provides for Automated Questionnaires and a set of pre-defined, role-based reports. Ongoing IT Controls Monitoring automates input of IT controls status information into CA GRC Manager and provides a single view of overall IT risk and compliance profiles.

There is support for mapping between individual controls and authority documents, featuring a library of more than 400 regulations with mappings to IT controls from the Unified Compliance Framework.

"The explosion of data growth and the increase in regulations have created unprecedented security and compliance challenges for organisations," said Andrew Kelly, Director of CA’s Security Business Unit, Australia and New Zealand. CA Access Control 12.5 helps manage regulatory compliance by enforcing policy-based control of privileged users and controlling what system resources they can access and what they can do under specific circumstances.

Improved integration of CA Role & Compliance Manager's patent-pending analytics and policy engine with CA Identity Manager's ability toautomate provisioning processes will help provide for "Preventative Compliance".

This proactively prevent business and regulatory policy violations during the provisioning process by automatically checking for policy violations, such as segregation of duties.

Also, CA DLP 12.0 addresses the insider threat by helping prevent data loss or misuse across the enterprise and with federated partners. In addition, CA DLP is identity-centric and can apply policy dynamically to end-user activity based on his or her organisational roles forcontent aware identity and access management.