This quarter's update includes 804 updated and 45 new controls, with a significant number centered on physical and environmental protection (everything from the mandated way to secure exits, screen visitors and manage assets to requirements affected enterprises must meet to protect employees, property and data from environmental and criminal threats).
Once primarily the purview of flinty-eyed people with military or law enforcement backgrounds, physical security now cuts across all of the standard role and responsibility domains; consequently it is all too easy for physical security projects to become superfluous silos scattered across the enterprise that waste time and effort and generate unnecessary expense.
"The UCF helps enterprises manage their physical security compliance efforts more effectively by harmonizing controls and standards so that any wasteful redundancy can be easily spotted and eliminated. Working with unified controls can also provide enterprises with a broad view of their physical security profile, which they can then use to remediate any problem areas," says Craig Isaacs, CEO of Network Frontiers.
The UCF rationalizes IT controls from over 400 international regulatory requirements, standards and guidelines into a single set of straightforward requirements that clearly show the many points where global, state and industry regulations overlap. Working with a set of harmonized controls enables enterprises to reduce compliance complexity and costs and fully leverage their existing regulatory investments and efforts.
The UCF database is licensed by leading governance, risk and compliance (GRC) vendors including McAfee, Inc., CA, Compliance Spectrum, NEMEA, NetIQ, PolicyTech, TruArx and ControlScan.
More information on the UCF can be found at <>. Release notes for the Q2 2009 update can be found at www.unifiedcompliance.com/Q2_09.pdf
About Network Frontiers: Since 1992 Network Frontiers has developed ground-breaking tools to support IT best practices with a special focus on regulatory compliance, metrics, systems continuity and governance. Dorian Cougias, founder and Lead Analyst, is a frequent speaker at technology conferences and has authored numerous articles and books, including The Compliance Book and the award-winning Backup Book: Disaster Recovery from Desktop to Data Center.
The United Compliance Framework (UCF) is Network Frontiers' flagship product. By focusing on commonalities across regulations, standards-based development, and simplified architectures, the UCF supports a strategic approach to IT compliance that reduces cost, limits liability, and leverages the value of compliance-related technologies and services across the enterprise. The UCF's content and methodology is the direct result of Network Frontiers deep understanding of IT regulations and standards and decades of experience consulting for clients, publications, and vendors in the mission-critical IT arena.
The UCF was created by Dorian Cougias and his research partner, Marcelo Halpern of the international law firm Latham and Watkins, which oversees all legal aspects of the UCF. More information can be found at www.unifiedcompliance.com.