Enforcing Regulatory Compliance with MOM 2005

When I worked for a fortune 1000 company, I was in charge of Sarbanes Oxley compliance testing for IT Infrastructure. The #1 issue with companies and SOX testing is AUDITABILITY and tracking. To fix this problem, we deployed enterprise configuration mgmt software, and the company later spent about $400,000 to do this enterprise wide. I was reading in a bit more detail last night about a product that allows MOM 2005 to deliver true value to the business beyond IT support units in ensuring regulatory compliance. System monitoring is often thankless and not sexy like messaging or other customer-facing services…..but I think tracking, enforcing and auditing regulatory compliance through MOM 2005 could grab the attention of a few corporate executives. I’d like to get some positive attention for service monitoring every once-in-a-while. Notice: I have not implemented this MP personally, but am very intrigued by its potential. If you are someone who has implemented this solution, I would be very interested in your feedback.    Manakoa Compliance Service™ (MCS)   http://www.manakoa.com/products/mcs/   Manakoa offers a product and risk-based process for managing common regulatory issues in a way that integrates with MOM 2005 for compliance reporting, notification, spot checks, etc. This would seem to be an interesting way to maintain the auditability of the process, which is a facet of the process where many companies fall short.   Regulations addressed by the solution include many of the most common public regulations we read about in the news every day.   ·  Gramm Leach Bliley Act (GLBA) ·  Health Insurance Portability and Accountability Act (HIPAA) ·  Federal Information Security Management Act (FISMA) ·  Sarbanes-Oxley Act ·  Emerging Regional and International Regulations