PolicyDOC version 1.3 is released. This has one major new feature for drag and drop. Previous versions showed all sections of all policies on the “Organize Sections” page. For customers who had a large number of policies, this created a usability issue. In this release, sections related to only currently selected policy are displayed on this page which makes it very convenient to organize different sections within a policy using drag-drop functionality.
Version 1.3 of Policy, Procedure and Exception Management
Posted by rr on September 13, 2009
Posted in policy management | Leave a Comment »
CISSP Book: Draft 40 published
Posted by rr on June 11, 2009
Today, draft 40 of CISSP book is published. This is available for download at http://rafeeqrehman.files.wordpress.com/2009/06/cissp-book-40.pdf
Posted in CISSP Book | Leave a Comment »
iPhone development – getting started
Posted by rr on May 31, 2009
http://developer.apple.com/iphone/
Posted in Information Security Architecture | Leave a Comment »
iPhone Application Development
Posted by rr on May 31, 2009
Following is a good introductory video related to iPhone application developmennt.
Posted in Information Security Architecture | Leave a Comment »
Network Access Control Basics
Posted by rr on May 27, 2009
A good introductory video for NAC. Gives an overview for high level manager. Click Here to view.
Posted in Information Security Architecture | Leave a Comment »
New Updates to Policy Management Software
Posted by rr on April 12, 2009
A number of updates are made for Policy Management Software over the weekend. These include:
- Fixing permissions for user management.
- Fixed some issues with PDF file generation.
- Updated graphical report
Updated exception report graph is shown below.
Posted in Uncategorized | Tagged: open source policy management, policy exception management | Leave a Comment »
Draft of policy exception graphic report
Posted by rr on March 22, 2009
Posted in policy management | Tagged: Conformix, free policy management software, open source policy management, policy exception management, policy management, web-based policy management | Leave a Comment »
Signatures for Policy Exception
Posted by rr on March 16, 2009
Working on Policy and Exception Management software (POEM) version 2.0. Adding signatures using AJAX on Policy Exception web page was a challenge for few reasons. Just wanted to make sure that everything is done on a single form instead of creating a new form for signatures. It took some time to integrate add and delete functions to ensure the Exception form does not refresh. However it is done now! I hope to get the beta version 2.0 ready in a week timeframe with some good looking graphs.
Posted in policy management | Tagged: free policy management software, policy exception management, policy management | Leave a Comment »
Information Security Policy and Policy Exception Management: Why it should be web-based
Posted by rr on March 13, 2009
Most of the companies manage policies using different types of documents (PDF, Word, etc). There are a number of disadvantages of this approach, including the following:
- The policy documents are difficult to manage and distribute to a large audience.
- Most of the people don’t know where to go and get a policy document when they need it.
- Policy documents quickly become out of sync when different revisions of policy are published.
- When there are multiple policies published in the form of documents, it is difficult to search for some policy items in multiple documents.
On the other hand, if you use a web-based policy management system (e.g. http://www.conformix.com/POEM), you will be able to manage the policies in a much better way. This will allow you to:
- Manage all corporate policies at one place, include information security policyies, different IT policies and procedures, HR policies, financial and travel policies, and so on.
- You can have a work-flow to approce these policies
- The latest version of these policies are always available online and at one place.
- Search functionality enabled you to find relevant policy sections quickly.
- You can submit policy exceptions requests and manage policy exceptions.
There are many other advantages as well which I will list in my next posts.
Posted in policy management | Tagged: free policy management software, policy exception management, policy management | Leave a Comment »
Security Policy and Exception Management Software Released
Posted by rr on March 8, 2009
Today I have released first version of web-based policy management and policy exception management software. Main features of this software are as listed below:
- Web-based software with no client requirements. The users need only web-browser.
- Centralized policy management for all corporate policies
- Policy exception management and PDF exception file generation.
- No software to install. The system comes as VmWare appliance with all software pre-built and configured. However, you can choose to install it on your server as well.
- Managing multiple policies
- Drag and drop functionality to re-arrange policy sections
- Printing policies in PDF format
- Online submission and processing of policy exception requests
- Role-based access
- Embedded HTML editor with commonly used editor functionality.
- Drill down feature to focus on a particular policy section while editing a policy
- Spell checking
- Search capability to look for policy sections related to a particular scenario
Main benefits of this software are:
- All policies are up-to-date all the time and accessible for users
- Exceptions to policies can be requested online
- Get notification for expired exceptions
- Provides web-based interface
- You can tweak policy in case number of exceptions on a particular policy section exceeds a certain limit.
- No need for distribution of updated policies to all audience thus avoiding out-of-sync problem related to policies.
- The audience has access to the most current policy all the time.
For more information, contact info@conformix.com. Here is a screenshot of the policy administrator interface.
- Policy Management
Posted in policy management | Tagged: free policy management software, policy, policy exception management, policy management | 2 Comments »


