Compliance Guardian 4.1: Breaking the (Microsoft) Fourth Wall

With the release of AvePoint Compliance Guardian 4.1 we have moved one step closer to providing a platform to work across the needs of your entire infrastructure. Not only have we improved Compliance Guardian’s stability and performance, we have also provided major enhancements to the Incident Management Center. The biggest news, however, is the addition of Box support in both Scheduled and Real Time Scanning.

Introducing Support for Box

As a popular enterprise content management system, Box has been an increasing concern for our customers when it comes to data protection. With this release, we have added the ability to detect policy violations in Box, including the ability to take immediate actions such as deleting, quarantining, moving, and notifying when content that is out of policy is discovered. These plans are configured in the same way that users are already deploying Compliance Guardian, so there is nothing new to learn and no new systems to add. Updating your environment to Compliance Guardian 4.1 will automatically give you access to Box scans. Using an authorized Box token, simply add your enterprise Box platform in the connection manager and you can begin protecting Box environment right away!

Incident Management Quality of Life Improvements

We have listened to the feedback from our field staff and customers, and have made significant enhancements to the Incident Management Center to allow more data to be presented directly within the Compliance Guardian interface. The additional columns in All Scan Records as well as the Incident Manager will not only give more flexibility when viewing your reports, but they also allow more detailed data exports for ingestion into external systems such as a SIEM monitoring system.

Improvements to Search

One of the most important parts of the Incident Manager is the ability to quickly surface data and pivot on the results of those searches. With our latest release, we have greatly improved not only the searchable fields (expanded to include the Incident ID), and also improved the persistence of your search results. Now, as you navigate within a table in the Incident Management Center, data will be retained from screen to screen.

We have also added the ability to do a search and scroll through pages with the search results surfaced from page to page, as well as the ability to scroll through incidents after a search with built-in navigation buttons push the user to the next incident that was surfaced by their search criteria. These additions to the Incident Manager will make the day-to-day management a much more fluid process.

Improvements to Incident Resolution

In addition to the improvements in surfacing incidents to end users, we have standardized the resolution of these incidents. One of the primary areas of focus in Compliance Guardian is the standardization of activity from one type of incident to another. With the introduction of standard resolution actions to dismiss, escalate, or resolve across all incidents in Compliance Guardian, we have provided not only a consistent user experience, but also added the ability to report on all actions in the same way.

We have also added the ability to create incident reports without sending notifications to multiple users. This will allow for centralized security teams to track the incidents across their environments without having to increase the volume on their email server or overburden their end users with email notifications.

AvePoint Risk Intelligence System

We are pleased to also announce the release of the AvePoint Risk Intelligence System (ARIS) alongside Compliance Guardian 4.1. ARIS will now allow customers the flexibility to run Privacy Impact Assessments (PIAs) in a hosted private cloud. This eliminates the need for IT teams to spin up virtual machines (VMs), and allows you to quickly and easily incorporate PIAs into your organization.

This new fully hosted solution provides our customers with a number of improvements over traditional PIAs:

• Fully hosted and maintained by AvePoint
• Private cloud deployment (not multi-tenant)
• Aggregated reporting across all PIAs
• Integration with existing Active Directory environment to easily assign tasks

ARIS provides companies with a single Software-as-a-Service (SaaS) interface to perform enterprise-wide PIAs so you can begin to build Privacy by Design into every decision you make. With the upcoming General Data Protection Regulation (GDPR), the need for companies to perform these PIAs is ever increasing. Creating a simple and straightforward way for your organization to perform PIAs with question collections that we have both curated as well as crowdsourced with our partnership with the International Association of Privacy Professionals (IAPP) places us firmly as the industry leader in these assessments.

Respondent and Reviewer Delegation

In this release we have added the ability to delegate the responsibility for both answering and reviewing questions to a different user. Sometimes there is a need to delegate an answer to a team member who is better equipped to respond. With that in mind, we’ve included a way for the answerer to pass the question to another user. Once the new user responds, the original answerer can review and submit that along with the rest of the questionnaire. We have also included the ability to assign multiple reviewers during the assessment process so you are now able to assign reviewers to individual questions or to groups.

Why ARIS

As the GDPR rolls out across the European Union – and to organizations with a significant European presence – privacy, business, and IT teams will be working together to ensure compliance. As the privacy space continues to shift, SaaS offerings such as ARIS will allow you to quickly adapt to new and changing regulations

Learn more about ARIS and request your free demo today!