AlertEnterprise CFATS Solution

Overview

The AlertEnterprise CFATS solution integrates IT and physical security across diverse systems, applications, databases and geographically distributed assets. It provides rules-driven risk prevention for cross-enterprise access security and transaction authorization. AlertEnterprise also provides real-time monitoring and correlation of IT and physical access events for timely detection, alerting and remedial action in response to security violations. The AlertEnterprise CFATS solutions leverages an open connectivity architecture that aggregates data from geo-spatial data sources, video surveillance systems, physical access card systems, biometrics and other physical security systems, electronic data feeds like NIPP information, weather data, National Vulnerability Database (NVD) information and many other sources. All this information allows heightened awareness of real threats.

CFATS Solution Capabilities

Identify assets and determine criticality

• Identify Covered Facility areas under CFATS
• Identify Chemicals of Interest (COI) and track related transactions and inventory
• Identify Chemical Terrorism Vulnerability Information (CVI) and need-to-know access
• Identify Authorized User and track access to critical applications and assets

Complete Security Vulnerability Assessments

• Conduct asset discovery and characterization assessments
• Determine overall risk by correlating blended threats and vulnerabilities from Physical Access Control Systems, Identity and Access Management, Inventory Management, ERP and Training and Certification Systems (HRMS)
• Reconcile policy-compliant IT user access with pre-integrated access to PACS
• Reconcile risks against data from external data feeds (NVD, iDefense and DHS NIPP)

Cyber Security Risk Management

• Aggregate threats and vulnerabilities from control systems, SCADA and DCS systems.
• Correlate application security risks from ERP systems, HR applications and Financial Systems
• Assimilate and reconcile IT Security and Physical Security test results
• Establish an electronic security perimeter – monitor physical and system access
• Automatic integration of background checks and certification data

Active policy-enforcement and Risk-Led Response Capabilities

• Powerful visual remediation and risk-led response capabilities
• Incident management and automated Remedial Action Scripts (RAS)
• Integrate with existing BCP/DR applications
• Automated reporting: Site Security Plan (SSP), audit reports, role-based dashboards

Benefits

• CFATS compliance and security risk management in a single application
• Track personnel access to confidential information and critical assets
• Improve security - recognize previously undetectable events by analyzing blended threats
• Detect, notify and then prevent incidents including thefts, sabotage and acts of terrorism
• Reduces cost of compliance by eliminating silos and duplicate spending