“As organisations continue to move their most critical enterprise class workloads to the cloud, security and compliance must be priority number one,” said Rodney Rogers, chairman and CEO, Virtustream. “Virtustream’s acquisition of ViewTrust assures our customers that we can provide a real time, 360 degree view of their entire IT environment, allowing them to manage their enterprise risk while complying with regulatory requirements.”
As a result of the acquisition:
· Virtustream will expand its software portfolio to include ViewTrust’s line of products focused on enterprise risk management (ERM), cyber situational awareness and compliance.
· The ViewTrust capabilities will be further embedded in Virtustream’s xStreamTM cloud management software (private, public and hybrid solutions for enterprises and service providers).
· Virtustream’s IaaS service offerings will be enhanced with advanced security including enterprise governance, risk and compliance (GRC) services, security (SIEM) and risk mitigation tools (real-time compliance) to help customers, including intelligence and defence focused enterprises, meet the requirements of advanced security and compliance audits as well as post compliance continuous monitoring and reporting.
“The acquisition underscores the virtue of security and compliance in bringing risk-averse enterprises to production clouds, particularly those that are subject to stringent regulatory requirements,” said Agatha Poon, research manager at 451 Research. “As Virtustream continues to raise the security bar for its xStream cloud management software and IaaS offerings, adding ViewTrust Technology to its arsenal will go a long way towards shoring up its credentials as a challenger brand.”
The relationship between the two companies developed in 2012 when Virtustream integrated ViewTrust’s GRC and Risk Management solution into xStream to enable commercial enterprises and government agencies to automate the pre- and post-audit requirements, as well as ensure continuous compliance monitoring. Built on a modular reference architecture which supports both SQL and NoSQL (Big Data) data stores with conformance to the CAESARS (Continuous Asset Evaluation, Situational Awareness and Risk Scoring) framework and NIST 800-137, these tools solve the problem of Continuous Enterprise Risk and Compliance Management by ingesting and analysing massive amounts of data, to help enterprises meet, not only the requirements of a compliance audit, but also support post compliance analytics, monitoring and reporting.
“By integrating a comprehensive GRC, SIEM and Risk Management offering into our service, we will save our clients money, reduce deployment time to minutes, and ensure their environments are continuously monitored and secure,” added Kevin Reid, CEO and CTO, Virtustream.
ViewTrust’s suite of products will also enhance the Virtustream software portfolio both as stand-alone products and a fully integrated solution into Virtustream’s xStreamTM cloud management software. ViewTrust’s assets will strengthen the xStream product suite by adding security-related IP to both the hybrid and core policy engine. Virtustream will be able to help customers manage and monitor compliance with leading cloud certifications and compliance frameworks, including FedRAMP, FISMA, DIACAP, ICD 503, CSA, SSAE16, PCI-DSS 2.0, SOX/GLBA, HIPAA HITECH, NERC CIP, IS0 27001-2005/2013, and others - in the customer's environment as well as any xStream powered cloud.
Virtustream will continue to distribute ViewTrust's Analytics and Continuous Monitoring Engine (ACE) platform, as well as its ComplyVision, ThreatVision, LogVision, and AssetVision software solutions. These software solutions provide Enterprise Risk Management (ERM/xGRC) services integrated with compliance management, cyber security and threat impact analysis to commercial and government clients. ViewTrust currently provides these ERM solutions to such clients as U.S. Department of State, U.S. Department of Treasury and TWD & Associates.
“We’re very excited to join the Virtustream team,” said Kaus Phaltankar, CISSP, CISA and CEO of ViewTrust Technology, Inc. “Virtustream’s xStream software is already architected to the highest security and compliance standards. By combining our technologies, Virtustream and ViewTrust will be even more capable of assisting customers in meeting risk management requirements for the enterprise and cloud deployments, as well as managing and complying with a wide variety of complex regulatory compliance reporting requirements.”