McAfee and RSA Announce Joint Compliance and Risk Management Solution

New Solution Designed to Correlate Device-level Security Risks with Overall Impacts on Business Performance

LAS VEGAS, FOCUS11 — October 17, 2011 — McAfee and RSA, The Security Division of EMC (NYSE:EMC) today announced a new joint solution based on their existing technology partnership. This joint solution integrates security data from the McAfee® ePolicy Orchestrator® platform (McAfee ePO™) with business infrastructure and compliance data in the RSA® ArcherTM eGRC Platform and the RSA Archer Enterprise Management solution. By connecting this data, customers can better leverage business information together with security data to gain a deeper understanding of risk and compliance issues.

“The McAfee and RSA solution provides greater visibility into the state of security and compliance across the enterprise infrastructure and enables a more comprehensive understanding of the business’ risk and compliance posture,” said Dave Anderson, senior director of Security Management at McAfee. “The integration allows organizations to utilize McAfee security management products to manage system-level security while also incorporating data and findings from those products into their risk and compliance management processes within the RSA Archer eGRC Platform.”

“Both IT and security organizations are facing challenges today managing a myriad of tools and data that help them protect and keep the business up and running,” said David Walter, senior director of RSA, The Security Division of EMC. “This integrated offering provides customers the opportunity to improve IT-GRC programs with information from security management processes. The Archer eGRC platform understands business criticality – adding this enables customers to prioritize the issues being documented in McAfee ePO against their business objectives. This enables better business decisions about where resources are placed, resulting in an effective risk-based way to respond quickly to new threats, address program deficiencies and reduce vulnerabilities across all domains and lines of business in the enterprise.”

McAfee and RSA are delivering on a technology partnership announced earlier this year. The two industry leaders now offer integrated solutions designed to help customers address complex security challenges, lower risk, improve compliance, and ensure data security across the IT infrastructure.

RSA Archer Enterprise Management is engineered to provide a central repository of information on enterprise’s business hierarchy and operational infrastructure. This web-based solution allows enterprises to develop an aggregate view of organizational divisions, determine the criticality of supporting technologies, and use that information in the context of eGRC processes. McAfee ePO enables organizations to centrally manage their enterprise security posture through an open framework that unifies security management for systems, applications, networks, data, and compliance solutions.

The integrated solution between the RSA Archer eGRC Platform and ePolicy Orchestrator software and other McAfee security management products includes the following capabilities:

  • The integration can populate the devices application within RSA Archer with systems in the infrastructure being managed by McAfee ePO. This ongoing synchronization helps ensure that device/platform level information is consistent between GRC processes and IT operations.

  • Within the Devices application in the RSA Archer eGRC platform, customers can gain visibility into ownership and relationship to business processes and applications for a better understanding of the criticality of the issues captured from ePO and the appropriate accountability to ensure proper and timely response.

  • McAfee® VirusScan® Enterprise software, McAfee® Host Intrusion Prevention, McAfee® Vulnerability Manager, McAfee® Policy Auditor and McAfee® Risk Advisor products all provide additional device-level information within McAfee ePolicy Orchestrator software to better define the current device-level security within RSA Archer. Each product adds additional reporting data as well as insight into the current state of security within the infrastructure.

  • Risk and compliance calculations and reporting can be based on the data coming from McAfee Risk Advisor and improve overall visibility of the current security risk and holistic visibility of how that device's security risk impacts overall business performance.

Availability
The Integration Package is available immediately through RSA Archer on the RSA Archer eGRC Exchange. For additional information on RSA products, visit http://www.rsa.com. For additional information on McAfee products, visit http://www.mcafee.com/us/business-home.aspx.

About McAfee
McAfee, a wholly owned subsidiary of Intel Corporation (NASDAQ:INTC), is the world's largest dedicated security technology company. McAfee delivers proactive and proven solutions and services that help secure systems, networks, and mobile devices around the world, allowing users to safely connect to the Internet, browse and shop the Web more securely. Backed by its unrivaled Global Threat Intelligence, McAfee creates innovative products that empower home users, businesses, the public sector and service providers by enabling them to prove compliance with regulations, protect data, prevent disruptions, identify vulnerabilities, and continuously monitor and improve their security. McAfee is relentlessly focused on constantly finding new ways to keep our customers safe. http://www.mcafee.com

About RSA
RSA, The Security Division of EMC, is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments.

Combining business-critical controls in identity assurance, encryption & key management, SIEM, Data Loss Prevention and Fraud Protection with industry leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated. For more information, please visit www.RSA.com and www.EMC.com.

EMC, RSA and Archer are registered trademarks or trademarks of EMC Corporation in the United States and other countries. All other products and/or services are trademarks of their respective owners.

This release contains "forward-looking statements" as defined under the Federal Securities Laws. Actual results could differ materially from those projected in the forward-looking statements as a result of certain risk factors, including but not limited to: (i) adverse changes in general economic or market conditions; (ii) delays or reductions in information technology spending; (iii) the relative and varying rates of product price and component cost declines and the volume and mixture of product and services revenues; (iv) competitive factors, including but not limited to pricing pressures and new product introductions; (v) component and product quality and availability; (vi) fluctuations in VMware, Inc.'s operating results and risks associated with trading of VMware stock; (vii) the transition to new products, the uncertainty of customer acceptance of new product offerings and rapid technological and market change; (viii) risks associated with managing the growth of our business, including risks associated with acquisitions and investments and the challenges and costs of integration, restructuring and achieving anticipated synergies; (ix) the ability to attract and retain highly qualified employees; (x) insufficient, excess or obsolete inventory; (xi) fluctuating currency exchange rates; (xii) threats and other disruptions to our secure data centers or networks; (xiii) our ability to protect our proprietary technology; (xiv) war or acts of terrorism; and (xv) other one-time events and other important factors disclosed previously and from time to time in the filings of EMC Corporation, the parent company of RSA, with the U.S. Securities and Exchange Commission. EMC and RSA disclaim any obligation to update any such forward-looking statements after the date of this release.

Note: McAfee, ePolicy Orchestrator, and VirusScan are trademarks or registered trademarks of McAfee, Inc. or its subsidiaries in the United States and other countries. Other names and brands may be claimed as the property of others.

McAfee
Erica Coleman, 408-346-5624
erica_coleman@mcafee.com
or
RSA, The Security Division of EMC
Lona Therrien, 781-515-5449
lona.therrien@rsa.com