OCC guidelines are designed to help banks and other financial institutions achieve GLBA compliance. These published bulletins provide guidance on preventing, detecting, and responding to information system intrusions. Failure to comply can shut a firm down, as well as increase the risk of system downtime, increase troubleshooting costs and damage repair, result in possible fines, and create revenue loss during OCC-required shutdown until regulatory compliance and remediation are demonstrated satisfactorily. Tripwire solutions provide the IT configuration auditing capabilities required for compliance with OCC guidelines.

An Ironclad Defense: Detective Control

Tripwire provides what auditors call a detective control. It delivers the hard evidence of IT configuration audit and control that auditors want. Tripwire gives you:

• Automated configuration control that isn't susceptible to human error or lapses in judgment
• Broad infrastructure coverage of changes on servers, workstations and network devices, including changes made both manually or by automated tools
• Independent evidence of change through perfect segregation of duties - the person or tool that made the change is not used to validate the change