Many Trade Compliance Programs operate on manual processes and tribal knowledge. As businesses increasingly leverage IT systems to automate business processes, the cyber compliance gap grows. The volume of business transactions executed in IT systems and having Trade Compliance implications is increasing. Risk of Trade Compliance violation in the cyber domain is likewise increasing. To address this risk requires automated Trade Compliance processes and integrated Cyber Compliance controls into business systems and applied to business data.
To address the growing Cyber Compliance gaps, Trade Compliance processes must be automated. Automated Trade Compliance processes ensure reliable information is readily available to decision makers, automated or human. Where underlying Trade Compliance and business processes are automated, automated Trade Compliance controls can be inserted into the business systems and applied to business data. Thus, automated Trade Compliance processes are a prerequisite enabler of Cyber Compliance.
Electronic Policy Engines (EPEs) and Policy Enforcement Points (PEPs)
Cyber Compliance controls are implemented through the use of Electronic Policy Engines (EPEs) and Policy Enforcement Points (PEPs).
EPEs (1) enable the creation and maintenance of electronic policies, (2) automate decision logic for verifying “prior authorization” (e.g. an active license), and (3) automatically verify business transactions, via the defined verification logic, against the prior authorizations. Where prior authorization is confirmed, the business transaction is automatically approved and logged against the corresponding prior authorization. Where prior authorization is not confirmed, the business transaction is automatically denied and logged against the corresponding electronic policy.
PEPs (1) integrate into business systems to intercept designated transactions, (2) pass the transaction attributes to the EPE for evaluation, (3) receive EPE decision results, and (4) enforce EPE decisions (allow/deny) in the designated business system transactions.
Cyber Compliance Services
Trade Collaboration Engine provides a number of services to help your company define Cyber Compliance requirements, evaluate and select Cyber Compliance solutions, and implement them effectively.
Contact Us to learn more