
Regulation
Active now
FISMA
FISMA assigns responsibilities to various agencies to ensure the security of data in the federal government. Thales e-Security helps Federal Government agencies and their suppliers meet FISMA requirements.

Thales e-Security assists with data security compliance and encryption for FISMA, the Federal Information Security Management Act
Regulation
Active now
FISMA assigns responsibilities to various agencies to ensure the security of data in the federal government. Thales e-Security helps Federal Government agencies and their suppliers meet FISMA requirements.
According to TechTarget’s SearchSecurity website:
FISMA requires program officials, and the head of each agency, to conduct annual reviews of information security programs, with the intent of keeping risks at or below specified acceptable levels in a cost-effective, timely and efficient manner. The National Institute of Standards and Technology (NIST) outlines nine steps toward compliance with FISMA compliance:
Core Thales e-Security capabilities that help meet FISMA compliance standards include:
In addition to helping you comply with FISMA; NIST 800-53, Revision 4; FIPS 140-2; FIPS 199; FIPS 200 and FedRAMP, Thales e-Security solutions are designed to help you comply with:
The Vormetric Data Security Platform from Thales e-Security is the only solution with a single extensible framework for protecting data-at-rest under the diverse requirements of Federal Agencies across the broadest range of OS platforms, databases, cloud environments and big data implementations. The result is low total cost of ownership, as well as simple, efficient deployment and operation.
Vormetric Transparent Encryption from Thales e-Security provides file and volume level data-at-rest encryption, secure key management and access controls required by regulation and compliance regimes.
Vormetric Key Management from Thales e-Security enables centralized management of encryption keys for other environments and devices including KMIP compatible hardware, Oracle and SQL Server TDE master keys and digital certificates.
Vormetric Data Security Intelligence from Thales e-Security provides another level of protection from malicious insiders, privileged users, APTs and other attacks that compromise data by delivering the access pattern information that can identify an incident in progress.
Vormetric Application Encryption enables agencies to easily build encryption capabilities into internal applications at the field and column level.
Vormetric Tokenization with Dynamic Masking from Thales e-Security lets administrators establish policies to return an entire field tokenized or dynamically mask parts of a field. With the solution’s format-preserving tokenization capabilities, you can restrict access to sensitive assets, yet at the same time, format the protected data in a way that enables many users to do their jobs.
The Vormetric Cloud Encryption Gateway from Thales e-Security safeguards files in cloud storage environments. It encrypts sensitive data before it is saved to the cloud enabling security teams to establish the visibility and control they need around sensitive assets. Because Vormetric’s Cloud Encryption Gateway relies on Thales e-Security's Vormetric Data Security Manager for encryption key and policy management, customers never relinquish control of cryptographic keys to the provider and data never leaves the enterprise premises unencrypted or unaccounted for.
As organizations grow increasingly reliant upon cloud storage offerings like Amazon Simple Storage Service (Amazon S3), Box and Caringo, the need to secure sensitive data in these environments grows increasingly urgent. With the Vormetric Cloud Encryption Gateway, organizations can encrypt files in cloud storage, enabling a secure and compliant file sharing and storage environment....
Critical to certification for meeting FIPS, is the implementation of security controls from NIST 800-53, Appendix F. Focusing on the capabilities needed to meet these requirements, this paper provides background about the Thales Data Security Platform and the Thales Transparent Encryption product that is delivered through that platform....
By Securosis analysts and industry experts, Rich Mogull, CEO and Adrian Lane, CTO.
This paper cuts through the confusion to help you pick the best encryption and tokenization options for your projects. The focus is on encrypting in the data center: applications, servers, databases, and storage. It also covers cloud computing (IaaS: Infrastructure as a Service)....
Mandate
Active now
Since June 5, 2014 federal agencies have been required to meet FedRAMP standards, ensuring they meet internal data security standards and extended security controls for cloud-computing.
Learn MoreRegulation
Active now
These regulations cover healthcare information in the US, HIPAA relates to protection; encryption, key management. etc and HITECH relates to disclosure of data breaches.
Learn MoreRegulation
Active now
United States Federal Law setting standards for a range of US companies, SOX Act sections 302 and 404 relate directly to data protection.
Learn More