8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 1/12
Regulatory Compliance:
What it means to IT
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 2/12
2
New Executive Directives in US an !"roa
Unite States Companies hit with legislation
Sar"anes #xley
$ealth Insurance %orta"ility & !ccounta"ility !ct '$I%!!(
Securities an Exchange Commission Rules
)oo an Drug !ministration Rules
US Commerce Export !pprovals
Europe*asel II !ccor '+lo"al *an,ing regulations(
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 3/12
3
Changing -anscape o. IT
Regulatory compliance emans
Enhance "usiness processes
Tighter controls sanctione .rom Execs
+reater unerstaning o. /New an #-D Rules0!ccounta"ility throughout 1enor chain
Regulate access an viewing o. /sensitive in.ormation0
!uthoritative Experts to translate laws an impact
Chie. +overning #..icer!ggregate into role o. CI#
$I%!! #..icer
1enors only1enors only EN!*-E Compliance 2 %rocesses 3 Technology !chieve ItEN!*-E Compliance 2 %rocesses 3 Technology !chieve It
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 4/12
4
Sar"anes #xley: What is it & Why Care
US Public Accounting reform and investor’s act of 2002 – Sarbanes Oxley
Enron, !" #orld!om, $yco
%olds !EO and !&O accountable for financial statements and securities
Sections '02, (0( and (0) on monitoring information controls and *rocesses +ill ave
significant im*act on "$ Pro-ects and .endors"m*acts A// Publicly $raded com*anies and Private ones too
&ortune 1000 com*anies +ill s*end u*+ards of 23 billion s*ent in 200' to acieveSarbanes Oxley com*liance – 45iff 6avis7
208 of budget on 9E# "$ initiatives 4:artner7
;08 of !"Os +ill be re<uired to attest on reliability and integrity of &inancial "$ Systems4:artner7
&or more information=
tt*=>>+++aic*aorg>info>sarbanes?oxley?summarytm
tt*=>>ne+sfindla+com>docs>docs>g+bus>sarbanesoxley0;2'02*df
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 5/12
5
What oes it mean to IT4
Section '02= !ertification of &inancial @e*orts
!EOs>!&O face criminal *rosecution for inaccurate statements
!"Os need to attest tat email, storage systems, financial systems
Section (0(= !ertification of "nternal !ontrols 4"::ES$ "PA!$7Any cange to a &inancial System 4E@P, !@, Accounting, Email7re<uires ne+ (0( Audit, !"O Attestation and @e*ort
/arge com*anies year end in Bune must be in com*liance by 9ovember13, 200( C 6ecember Dear @emains same
Ss, &oreign !om*anies and affiliates by A*ril 13, 2003Section (0)= aterial Event @e*orting
@eal time material event re*orting 9ot yet finalied
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 6/12
6
$ow oes 5arim"a help4
%olicy *ase Targeting
@estricts #%O can maFe #%A$ canges to *olicies, a**s, ande<ui* tat su**orts &inancial Systems
Automated Soft+are 6istribution – real time
Inventory an Reporting Controls@estricts re*ort vie+s – avoid SE! .iolations
Automatically emails re*orts to acieve *rocess com*liance
Accurate "nventory controls for de*reciation of Assets
Soft+are com*liance re*orting calculation of !O:S
%atch 5anagement an Support Tools"m*lements maintenance and security for &inancial Systems
"m*lements security and integrity cecFs for data>a** sync
@ollbacF, self ealing and moreG
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 7/127
$I%!!: What is it & Why Care
%ealt "nsurance Portability H Accountability Act
Passed in August of 1))I, $ooF effect A*ril 200'
!om*liance andated by October 200'
O!@ Privacy @ule C U*dated Banuary 200( 4%ealt and %uman Services7
"m*acts= %ealt Plans, "nsurance Orgs, %os*itals, 6octors, illingcom*anies, "S.s and any com*any res*onsible forelectronically>manually andling *atient records, billing or insurance info– All !om*anies
Estimated im*act varies from J1 to J1; billion 4still unFno+n – 5iff 6avis7
308 of !are 6elivery Orgs +ill not be %"PAA com*liant by 20034:artner7
&or more information=
tt*=>>+++i*aaorg>
tt*=>>+++sgov>ocr>i*aa>
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 8/128
$I%!!: What oes it eman o. IT4
Securely managing com*lex +eb of
.endor A**lications
Patient @ecords
illing>"nsurance informationet+een=
6octors
"nsurance carriers
%os*itals
.endors
A96 !entral 6ata !enter
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 9/129
Why is the Issue even more C#5%-E64
*I++ER %ro"lem then we thin,:Affiliated !linics do not ave O9 Site "$
6octors>9urses are forced to be tecs
Puts many automated efficiencies at risF
/acF of Standards
Privately o+ned macines
6octors are O#9E@S not ex*erts– dictate ne+ tecnology
any systems are regulated by &6A
Some older systems don’t ave u*grade *at+ay
+oing "ac, to manual will not W#R7
%ealtcare "ndustry is burdened +it gro+ing costs
%ealtcare *rofessionals are in sort su**ly – os*itals>clinicsare overcro+ded
7eep Doctors .ocuse on %atients N#T Supporting IT Systems7eep Doctors .ocuse on %atients N#T Supporting IT Systems
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 10/121
$ow oes 5arim"a EN!*-E Compliance4
Security
Enables SS/ Encry*tion of data transferred
!ode signing restricts installation on non a**roved systems
@oles based Administration – restrict @e*ort vie+ing and Admin
Policy ased targeting
@estricts a**lication>record access to a**roved Users>acines
Uninstall unautoried vie+s
@estricts #%O can target #%A$ 46ata>A**s7 systems
Self Service
@emote control for troublesooting a**lications
Self %ealing>@ollbacF C *rotect integrity of systems storing records
%atient In.ormation Systems can "e compliant N#T speci.ic applications8%atient In.ormation Systems can "e compliant N#T speci.ic applications8
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 11/121
#ther Regulations 5arim"a Ena"les9
:raam /ea liley –&inancial Services
9"AP 4!ommon !riteria Evaluation and .alidation7
9eeded by all !O$S systems catering to :overnment
arimba in Progress for version 3x
6erived from &ederal Security "nformation Act 2002
/eading te #AD for @egulatory and Private Security easures
&6A 21!@& Part 11 4regulation of medical e<ui*ment7
asel "" Accord 4regulate global anFing industry7US !ommerce Ex*ort !om*liance C "S.s
@estrictions on Encry*tion $ecnology Outside US
8/18/2019 Sales Regulatory
http://slidepdf.com/reader/full/sales-regulatory 12/121
7ey Solution Success )actors .or Compliance
"nformation "ntegrity 4secure, defend, de*loy7
$ax, %ealt, Bustice, "ntelligence,$rade Secrets, Personnel "nfo
Ada*ts to canging re<uirements 4flexible, ex*andable, modular7
Evolve +it ne+ regulations C
Allo+s for "m*lementation over time 4modular solutions7
Ease of aintenance, de*loyment and use