LJK/Security™

LJK/CDROM™	LJK/Security™
Main Page	Links	Marketing Fluff	What's New

LJK/Security provides centralized security assessment for distributed VMS systems. It supports

fully automated continuous monitoring
on-demand spot inquiries from the central security staff
full-scale compliance assessment including input from human assessors

to ensure all systems comply with organization security policy. That policy can be derived from predefined templates included with LJK/Security covering standard disciplines:

NIST 800-53 / NIST 800-53a
DoD Instruction 8500.2
PCI DSS

or it can be created by your security staff from scratch.

Click one of these three links to see our new HTML Report Format
NIST 800-53a	DoD Instruction 8500.2	PCI DSS

New features with Version 3.0 of LJK/Security include:

Choice of HTML or text formatted reports.
Automatic generation of Remediation Schedules (POA&M) .
Extensive automatic testing regarding Separation of Duties, reporting what has actually happened rather than what is intended.
Total automated tests increased to 940, of which 526 are applied successively to multiple security objects on the system.
Support to allow complete coverage including tracking assessor answers to questions about non-automated issues such as physical plant and organizational policies.
Full support of NIST 800-53a reporting discipline, including variations for Depth and Coverage requirements according to Impact Level.
Interface to support custom Report Formatting Modules, such as to feed private database formats.

Violation reports for policies built from NIST 800-53, DoD Instruction 8500.2 and PCI DSS templates include the control designation specified by the particular standard along with each reported violation. Further discussion of the NIST 800-53 templates is available on a separate page.

LJK/Security Documentation	Postscript	PDF	HTML
LJK/Security product brochure	Postscript	PDF	HTML

LJK/CDROM™	LJK/Security™
Main Page	Links	Marketing Fluff	What's New