For clients in regulated industries such as finance, health care, and any that deals with the alphabet soup of compliance (HIPAA, PCI, GLBA, FERPA, CMR17.xx, GDPR, ITAR… EIEIO), maintaining data security is of the utmost importance. However, the generation of the reporting on the security services in place is as important as the technology itself, as is the process for reviewing the reports.
For our clients in regulated industries for whom we provide the firewall solution, we typically provide “FAZ” reporting to our service agreement engagement. A component of our SecureSuite family of services, FAZ reports are generated either weekly or monthly depending on the requirements of the account and are emailed to the appropriate point(s) of contact at our clients. The FAZ report provides over twenty key metrics in several categories, ranging from the accounting of the browsing habits of internal users to the threats detected and mitigated on public-facing internet circuits.
Depending on your industry, various sections of the report may prove more valuable and provide more insights than another. To assist our client’s review process, we have put together a PDF document titled “How to interpret your FAZ report”. If you’d like to receive a copy, please contact your account manager who would be happy to provide one to you.