By mapping IT controls against predefined policy content, McAfee Policy Auditor helps you report consistently and accurately against key industry mandates and internal policies across your infrastructure or on specific targeted systems. Policy Auditor is an agent-based IT audit solution that leverages the Security Content Automation Protocol (SCAP) to automate the processes required for internal and external IT audits.
Use prebuilt policy templates that eliminate manual effort and demonstrate adherence to key industry mandates and internal governance policies, including PCI DSS, SOX, GLBA, HIPAA, FISMA, and the best-practice frameworks ISO 27001 and COBIT.
Keep updated on compliance standards. Customize and extend Policy Auditor IT controls checking
Product components: McAfee Policy Auditor software consists of several components that are used to create benchmarks, audit systems, and display results.
The McAfee Agent and the McAfee Policy Auditor agent plug-in do not need to be installed on systems that are audited by McAfee® Vulnerability Manager.
These are the McAfee Policy Auditor components as they appear in the user interface:
Update McAfee Policy Auditor content
After installing McAfee Policy Auditor on ePolicy Orchestrator software, you must update the content before using the software or rebooting the system.
NOTE: In ePolicy Orchestrator software version 4.6, you can also update the benchmark and editor content by clicking Menu | Software | Master Repository, then clicking Actions. Pull Now and following the Pull Now wizard. For more information, see Using pull tasks to update the master repository in the ePolicy Orchestrator software version 4.6 Product Guide.