VCE, the Virtual Computing Environment Company formed by Cisco and EMC, has announced general availability of the Vblock GRC Solution with RSA. This enterprise governance, risk and compliance (eGRC) solution is based on the RSA Archer platform and was validated by VCE to address the challenge of managing risks in virtualized infrastructures.

The Vblock GRC Solution with RSA provides a centralized framework that manages security policy and compliance across the virtualization layer of the Vblock platform. The solution delivers more than 130 VMware-specific policies and implementation procedures mapped to hundreds of global regulations such as PCI, HIPAA, JSOX and EU privacy regulations.

It also discovers new virtual infrastructure devices and measures relevant security control procedures, continuously monitoring that those controls have been implemented correctly. It enables an IT organization to have centralized visibility and control into their compliance posture across physical and virtual infrastructures.

The Vblock GRC Solution with RSA follows VCE's four-phased approach:

Architect—aligns and prioritizes business requirements with centrally documented policies, standards and procedures by which the Vblock platform will be governed;

Implement—configures the solution to discover VMware devices and check controls with automated measurement and questionnaires;

Validate—regularly monitors the VMware-based controls and manages non-compliance through remediation or exception management processes; and

Govern—uses the dashboard and reporting features to provide transparency on the security policy and compliance posture of the Vblock platform.