What’s New

IT Compliance Management Series Now in Beta 2

The IT Compliance Management Series is designed to help eliminate the murkiness of IT governance, risk, and compliance (GRC). This Solution Accelerator bridges the knowledge gap for IT professionals by translating auditor expectations and GRC authority document requirements into real IT tasks through the use of control activities that are specific to a particular technology or platform. The IT Compliance Management Series works in conjunction with the Microsoft® IT GRC Process Management Pack for System Center Service Manager to deliver GRC program management and automated testing for GRC compliance managers and implementers.

To join the beta, visit the System Center Service Manager IT GRC Public Beta 2 site.

Download This Solution Accelerator

To join the beta and download the IT Compliance Management Series beta materials, visit the System Center Service Manager IT GRC Public Beta 2 site. After you are successfully registered, all the software you’ll need will be available under the Downloads link.

System Center Service Manager 2010 and the IT GRC Process Management Pack for System Center Service Manager are prerequisites; these can also be found on the System Center Service Manager IT GRC Public Beta 2 site.

About This Solution Accelerator

The IT Compliance Management Series helps IT pros configure Microsoft products to address specific IT GRC requirements. Combined with the power of the IT GRC Process Management Pack for System Center Service Manager, this Solution Accelerator will allow organizations to shift the enforcement and management of IT GRC requirements away from personnel and directly to the underlying Microsoft technologies.

The IT Compliance Management Series takes advantage of the ability of System Center Service Manager to integrate with System Center Configuration Manager, System Center Operations Manager, and other systems to automate the monitoring, validation, and reporting of the compliance state of Microsoft products. The supplied control activities bind complex IT GRC requirements, stated as control objectives, to actual product configuration settings and events. System Center is then able to act as a GRC management and oversight solution for an organization.

The series ships with several new features, including:

IT Compliance Management Libraries for Windows Server 2008, Windows Server 2008 R2, Windows 7 as well as additional prescriptive guidance for System Center Service Manager, System Center Configuration manager, and System Center Operations Manager
Desired Configuration Management (DCM) packs for Windows Server 2008, Windows Server 2008 R2, and Windows 7

Included in the Download

The IT Compliance Management Series includes the following components:

Windows Server 2008 IT Compliance Management Library
Windows Server 2008 R2 IT Compliance Management Library
Windows 7 IT Compliance Management Library
System Center IT Compliance Management Library

Related Resources

Security Compliance Manger. This tool incorporates extensive guidance and documentation in one centralized location, enabling organizations to access and automate their security baselines for Windows client and server operating systems—including Windows 7—and Microsoft applications.
Payment Card Industry Data Security Standard Compliance Planning Guide. This guide is designed to help organizations meet Payment Card Industry Security Standard (PCI DSS) requirements.
Security Risk Management Guide. This guide helps customers plan, build, and maintain a successful security risk management program.
Microsoft Operations Framework (MOF) 4.0. MOF 4.0 delivers practical guidance for everyday IT practices and activities, helping users establish and implement reliable, cost-effective IT services for GRC activities.

Join the Beta

The IT Compliance Management Series is available as a beta release on the System Center Service Manager IT GRC Public Beta 2 site. It is an open beta download.

To join the beta, do the following:

Visit the System Center Service Manager IT GRC Public Beta 2 site at https://connect.microsoft.com/SelfNomination.aspx?ProgramID=2733&pageType=1&SiteID=446.
Sign in using a valid Windows Live ID to continue to the Invitations page.
Click on the Downloads link.

Microsoft System Center Service Manager 2010 and the Microsoft® IT GRC Process Management Pack for System Center Service Manager are prerequisites for the IT Compliance Management Series.

The beta version of the Microsoft IT GRC Process Management Pack for System Center Service Manager is available for download on the System Center Service Manager IT GRC Public Beta 2 site (link above).

Users can download a trial version of Service Manager 2010 here: http://blogs.technet.com/b/servicemanager/archive/2010/04/21/service-manager-2010-evaluation-bits-available-for-download.aspx.

Community and Feedback

The Solution Accelerators team hopes you’ll download this beta offering and take advantage of the opportunity to influence its development. Please send your honest and constructive feedback to secwish@microsoft.com.
To join in the greater GRC conversation, visit the Compliance Management Forum. Ask questions of the compliance experts and collaborate with your peers on GRC-related compliance management issues.

About Solution Accelerators

Solution Accelerators are authoritative resources that help IT pros plan, deliver, operate, and manage IT systems that address real-world scenarios. Solution Accelerators provide free, prescriptive guidance and automation to accelerate cross-product integration, core infrastructure development, and other enhancements.

Sign up to receive the Solution Accelerator Notifications newsletter so that you can stay informed about new Solution Accelerator releases and updates. The newsletter covers such areas of interest as:

Communication and collaboration
Security, data protection, and recovery
Deployment
Operations and management