Federal Service for Technical and Export Control (FSTEK)
The Federal Service for Technical and Export Control (FSTEK) certification is required in order to sell information security systems in Russia. The regulations covering these requirements were introduced by the Russian government in July 2011. The Russian government introduced these requirements to ensure that establishments handling personal/confidential/government data are compliant with data security norms and regulations (FZ 152). The regulations detail the security requirements with which information security systems which process personal/confidential/government data need to comply. Compliance with the requirements is affirmed by a certificate granted by the Russian Government (Order of FSTEC #17, #31 and #21). For additional information, please refer to: http://fstec.ru/tekhnicheskaya-zashchita-informatsii/dokumenty-po-sertifikatsii/153-sistema-sertifikatsii/591-gosudarstvennyj-reestr-sertifitsirovannykh-sredstv-zashchity-informatsii-n-ross-ru-0001-01bi00 Veritas Product FSTEK Certificates Backup Exec 2012 TU + NDF NetBackup 7 TU + NDF Return to Global Certification Management Program Office. Return to the Customer Trust Portal.1.8KViews1like0Comments- 1.7KViews0likes0Comments
Federal Identity, Credential and Access Management - FICAM
Federal Identity, Credential and Access Management (FICAM) Trust Framework Solutions (TFS) The FICAM TFS (http://idmanagement.gov/trust-framework-solutions)is the federated identity framework for the U.S. Federal Government. It includes guidance, processes, and supporting infrastructure to enable secure and streamlined citizen and business facing online service delivery. The following Norton Secure Login (NSL) and Managed Public Key Infrastructure (MPKI) certification packages are applicable to the FICAM program run by GSA. Refer to http://idmanagement.gov/approved-identity-servicesfor a list of approved identity providers. Voluntary Product Accessibility Template - NSL Authority to Offer Services for FICAM TFS Approved Identity Services MPKI Security Accreditation Decision Letter(Valid until July 2016) For additional information, please contact Adam_Madlin@symantec.com. Return to Global Certification Management Program Office. Return to the Customer Trust Portal.1.4KViews0likes0Comments- 1KViews0likes0Comments
Global Certification Management Program Office
Symantec's Global Certification Management Program Office As part of the Symantec CTO Organization/Security Technology and Response (STaR) Department,a key responsibility is to oversee, maintain, and enhance through best practices employed our Symantec centralized certification management program globally. Our global staff of certification professionals actively promotes awareness of global certification best practices and provides overarching guidance and support to our product teams to walk them through the necessary business and technical channels to obtaining and maintaining Symantec product certifications. Please emailcertification supportfor further assistance. Veritas Certifications Federal Information Processing Standard Publication 140-2 (FIPS 140-2) Federal Service for Technical and Export Control (FSTEK) UK Cyber Essentials Return to the Customer Trust Portal1.3KViews0likes0CommentsCorporate Responsibility in a Connected World
Symantec protects the world’s people and information by conducting our business with a commitment to ethical operation, promoting a diverse and inclusive workplace, practicing sound environmental management and investing in positive social impact around the globe. Our corporate responsibility platform is organized into three pillars: Our People, Your Information, and The World. We welcome your feedback on our progress and on the challenges we still face. Symantec's Corporate Responsibility home page Letter from the CEO 2014 Corporate Responsibility Report Supply chain responsibility FAQ's to Customer Social Responsibility Surveys Corporate Responsibility in Action Blog This blog highlights how Symantec is implementing environmental, social and ethical principles throughout its business practices. Recent posts include: [connect_recent_blog_posts:6281] Return to the Customer Trust Portal912Views1like0CommentsCustomer Social Responsibility FAQs
Symantec protects the world's people and information by conducting our business with a committment to ethical operation, promoting a diverse and inclusive workplace, practicing sound environmental management and investing in positive social impact around the globe. We've published the answers to some of our most frequently asked questions related to Corporate Responsibility below, but if your concern is not addressed here, please contact us at CR@symantec.com. General Corporate Responsibility (CR) Governance Human Rights Environment Supply Chain Community Investment Contact General Corporate Responsibility (CR) Q: Where can I find answers to questions about Symantec’s Corporate Responsibility and sustainability efforts? A: You can find specifics by topic at our website or in our latest 2014 Corporate Responsibility Report downloadable on our CR website. Q: Are there training and development programs to support the integration of corporate responsibility within your company? A: Yes. Q: Does your company involve stakeholders in shaping its views and responses on corporate responsibility? A: Yes, details are available on our stakeholder engagement website. Q: Do you set annual corporate responsibility targets? A: Yes, goals are available on page 8 of our 2014 Corporate Responsibility Report. Q: Do you report publicly on your full corporate responsibility performance? A: Yes, we report our CR performance in our 2014 Corporate Responsibility Report. Q: Is your corporate responsibility-related data externally assured? A: No, not fully. Our greenhouse gas emissions and water data are externally assured. Q: Do you monitor corporate responsibility compliance? A: Yes. Governance Q: Do you have a Board-level individual with named responsibility for corporate responsibility issues? A: Yes. The Nominating & Governance Committee of Symantec’s Board of Directors has oversight over corporate responsibility. Q: Does your company have its own Code of Conduct? A: Yes, Code of Conduct is available on our website. Q: Will Symantec sign up to our company’s corporate responsibility or environmental codes of conduct? A: No, Symantec has its own Code of Conduct in place which includes corporate responsibility issues such as global citizenship, human rights, respect for the environment, diversity and inclusion, and fair employment practices. In addition, Symantec has a Global Supply Chain Manufacturing and Fulfillment Code of Conduct and separate conflict minerals, human rights and environmental policies. Therefore, we are not able to promise compliance to customer’s specific codes of conduct. Human Rights Q: Has your company joined the United Nations Global Compact? (To learn more about the United Nations Global Compact please go to https://www.unglobalcompact.org/) A: Yes, we are signatories to the United Nations Global Compact and members of the Lead Initiative. Q: Does your company have a human rights policy? A: Yes, our human rights policy is available on our website. Q: Have you conducted any internal activities or trainings on the Guiding Principles on Business and Human Rights? A: Yes, we have conducted targeted training within the company. Q: Have you conducted any external activities or trainings on the Guiding Principles on Business and Human Rights? A: Yes, we have participated in external meetings on the UN Guiding Principles. Q: Do you obtain information on the number of contract workers in your company and supply chain? A: Yes. Environment Q: Do you have an environmental policy? A: Yes, Symantec’s environmental policy is available on the corporate responsibility website. Q: Do you have an Environmental Management System (EMS) or systems in place to manage your environmental issues? A: Yes, a copy is available upon request by emailing cr@symantec.com Q: Do you have a company-wide Environmental policy? A: Yes. Q: Does your company have a documented system for the handling and disposal of hazardous waste? A:Yes. Q: Do you address environmental issues in your supply chain? A: Yes, this is managed through our environmental management system. Q: Do you incorporate environmental risks within your company risk management processes? A: Yes. Q: Does your company externally report on your environmental performance? A: Yes, see our latest corporate responsibility report: www.symantec.com/cr Q: Does your company externally report on your full C02 emissions through the Greenhouse Gas (GHG) Scopes? A: Yes, see our latest corporate responsibility report: www.symantec.com/cr Q: Does your company conduct formal environmental audits of your facilities? A: No. Q: Has your company incurred any fines and/or prosecutions for environmental issues, including prohibition notices for no compliance to an environmental permit or a breach of an environmental regulation, over the past 24 months? A: No. Q: Does your organization hold ISO 14001 certification? A: Yes, but only the Dublin, Ireland site only. A copy of the certificate is available upon request by emailing cr@symantec.com. Q: Does your organization have any external environmental certification? A: Yes, copies of LEED certificates are available upon request by emailing cr@symantec.com. Q: Please indicate if your company has publicly set reduction targets on greenhouse gas? A: No, but we intend to. Q: Please indicate if your company has publicly set reduction targets on solid waste? A: No. Q: Please indicate if your company has publicly set reduction targets on water usage? A: No, but we did complete the Carbon Disclosure Project Water Questionnaire. Q: What percentage of your company's current overall energy consumption comes from renewable sources? A: 0% Renewable Resources. Renewables in grid electricity are not reflected in this percentage. Q: Does your company implement measures to ensure that product distribution and transport emissions are minimized? A: Yes. Q: Is any of the following found in your product supplied to companies, and if so, please indicate your level of traceability and risk assessment: Q: Please provide the total water usage in cubic meters for your company operations within this calendar year. Indicate in the comments box if any of the data was estimated. A: We reported 350.75 ML for FY14 (in the CDP water questionnaire and verification statement)—only actual data, no estimation, only for sites where metered water data was available. 1 ML=1000 cubic meters so 350.75 ML=350,750 cubic meters. Q: Do you have procedures in place to address the following issues:(The term "child" refers to a person younger than 15 - or 14 where local law allows - or, if higher, the local legal minimum age for employment or the age for completing compulsory education) Supply Chain Q: Does your company have its own Supplier Code of Conduct? A: Yes, Global Supply Chain Manufacturing and Fulfillment Code of Conduct is available on our website. Q: Does your company have a conflict minerals policy? A: Yes, our conflict minerals policy is available on our website. Q: Does your company have its own diversity statement and/or stated diversity policy? A: Yes, see this is available on our diversity and inclusion website. Q: Does your company have its own supplier diversity statement and/or stated supplier diversity policy? A: Yes, a copy is available on our supplier diversity website. Community Investment Q: Does your company have a community program? A: Yes, we make a positive impact on society through volunteering and giving in our local and global communities through employee and corporate engagement and details are available on our community investment website. Contact Information Q: Who can I contact if I have further corporate responsibility questions? A: Please email cr@symantec.com. Return to Corporate Responsibility Return to the Customer Trust Portal1.5KViews0likes0Comments