Compliance strategies and best practices
Compliance doesn't begin and end with the Sarbanes-Oxley Act (SOX). Company must also keep up with the various security standards, the Health Insurance Portability and Accountability Act (HIPAA) and numerous other regulations and guidelines. It's a tall order, but it's one company must face in order to protect their customers and stay in line with standards set by the IT industry as well as the government.
List Topic Article
Highlights
There are many ways to measure the value of a security solution. One of the methods used by IT management is the Return on Security Investment (ROSI). Here's how you determine the quantitative components.
Social media sites such as Facebook, Twitter and Youtube have rapidly gained popularity in recent years. Although online social media clearly offers powerful benefits for enterprises, concerns around security, intellectual property protection and compliance remain. But now, there is a way out of Enterprise 2.0 wilderness.
Business process management (BPM) tools that offer real-time business process analysis are no longer a luxury amid the current major economic slowdown. Speed is crucial. But retrospective business intelligence or financial results lack the timely insights for minimizing business risks and enhancing efficiency to guarantee survival or success.
IT and business executives agree that managing corporate risks is critical, particularly as companies come face-to-face with regulatory compliance. Unfortunately most companies do not deploy risk management measures in a consistent and holistic manner. Here's an alternative to the piecemeal, reactive model for solving risk issues in an organization.
This paper proposes that the GRC implementation solution is to break GRC initiatives into a number of constituent components that can be addressed one at a time, beginning with those that are easiest to plan for and implement.
