- Framework software
- Data retention tools
- ID and access management
- DR
- Reporting software
- Encryption solutions
- Log management software
- Compliance services
- Policy management software
- Document management software
- Content management software
- Financial and accounting software
Email Alerts
-
How compliance with ISO 31000 supports risk management initiatives
ISO 31000 is becoming an important development tool for shaping existing and new risk management programs. Learn if your programs are in compliance with this standard.Tip
-
Are you in compliance with the ISO 31000 risk management standard?
The ISO 31000 risk management standard is becoming an important development tool for shaping existing and new programs. Learn if your programs are in compliance with the standard.Tip
-
Compliance Product Spotlight: GRC software, IAT, risk assessment tools
Some of the latest compliance products and risk management solutions can help your company stay in step with governance, risk and compliance regulations. Find out how.Product Spotlight
-
Compliance Product Spotlight: File share, GRC, Solvency II offerings
Here are some of the latest compliance products and risk management solutions that can help your company stay in step with the governance, risk and compliance regulations.Product Spotlight
-
GRC software takes SOX compliance from chaos to risk-based management
The Williams Cos. Inc. had more than 900 IT controls related to SOX compliance, many redundant. With patience and "highly configurable" GRC software, the chaos is under control.Article | Mon May 17 00:00:00 EDT 2010
-
Follow the money in GRC management platforms
Governance, risk and compliance (GRC) technology is evolving as ERP vendors up their stakes in GRC. Who's going to make money, and can you get into the game?News | Fri Apr 16 00:00:00 EDT 2010
-
OIX trust framework to secure citizen-to-government authentication
The Open Identity Exchange trust framework will enable the secure authentication and exchange of online identity credentials across public and private sectors.Article | Fri Mar 05 00:00:00 EST 2010
-
Will EMC acquisition put Archer ahead of the enterprise GRC pack?
A leader in IT governance, risk and compliance, Archer Technologies has worked to establish itself in enterprise GRC. Now, what does EMC's acquisition mean?Article | Mon Jan 11 00:00:00 EST 2010
-
Unified Compliance Framework unties overlapping compliance standards
Compliance professionals and vendors are turning to the Unified Compliance Framework as a common language for overlapping compliance standards.Tip
-
ISACA publishes new IT risk management framework based on COBIT
ISACA has released a risk management framework to help enterprise compliance officers identify, govern and manage IT risk. The Risk IT framework is aligned with COBIT.Article | Wed Dec 16 00:00:00 EST 2009
- VIEW MORE ON : Framework software
-
Disk encryption, data protection to stay compliant with HIPAA, HITECH
Staying vigilant about encryption and data protection not only keeps you compliant with HIPAA and HITECH, but also helps reduce overall business risk.Tip
-
Online Trust Alliance guide offers tips for data protection strategies
With the number and severity of breaches increasing, data protection strategies are vital. To help, the Online Trust Alliance has released a guide to online data protection.News | Thu Feb 09 14:59:48 EST 2012
-
Address information risk management now
Effective information risk management boils down to when issues are addressed. Savvy IT pros put the proper processes in place before the going gets tough.Blog
-
CIO Innovator: Ignore secure application development at your own risk
Security guru Chris Wysopal warns that organizations are ignoring secure application development, creating a dangerous environment where even novice hackers can wreak havoc.Video
-
FAQ: What is the Sony PlayStation Network security breach's impact?
The Sony PlayStation Network security breach affected millions of users. In this FAQ, learn how it was done, and its costs and likely ramifications.FAQ
-
Lax enterprise mobile device management hampers e-discovery
Enterprise mobile device management hasn’t kept pace with the proliferation of mobile devices, a shortcoming that can complicate e-discovery.Tip
-
A thorough data retention strategy needs more than just IT oversight
A data retention strategy is often considered IT's responsibility. But adhering to today's data retention requirements depends on input from many departments across the enterprise.Tip
-
Application security best practices help meet compliance objectives
Aligning application security best practices and compliance objectives helps companies comply with industry regulations and standards -- and may help reduce costs in the process.Tip
-
Q&A: How ignoring data security and privacy leads to compliance risks
HiSoftware chief technology officer Thomas Logan discusses under-the-radar -- but common -- data security and privacy lapses that cause compliance risks for many organizations.News | Fri May 20 00:00:00 EDT 2011
-
Before cloud deployment, consider risks of e-discovery in the cloud
The economic case for cloud deployment is compelling for many enterprises. But the risks surrounding e-discovery in the cloud need to be addressed by your e-discovery solutions.Tip
- VIEW MORE ON : Data retention tools
-
With influx of gifted gadgets, mobile device security top of mind for IT
After the holidays, many companies are facing an influx of mobile devices that could affect compliance with various regulations. Is your mobile device security strategy ready?News | Tue Jan 03 15:30:20 EST 2012
-
database activity monitoring (DAM)
Database activity monitoring (DAM) systems monitor and record activity in a database and then generate alerts for anything unusual.Definition
-
Vigilance, awareness key to enterprise cybercrime prevention
Consumer-targeted technologies are making their way into the workforce, increasing the need for vigilant cybercrime prevention strategies and mobile management solutions.Tip
-
Product Spotlight: Data access management, environmental compliance
Our latest roundup of IT compliance products features solutions to assist enterprises with data access management, environmental compliance and data security.News | Thu Oct 21 00:00:00 EDT 2010
-
What is NERC CIP, and IT's role in critical infrastructure protection?
Under the NERC CIP, power generators and suppliers must prove NERC compliance on critical infrastructure protection provisions by the end of the second quarter. Will you be ready?FAQ
-
FTC experts explore new online privacy frameworks
FTC experts recommend the creation of new online privacy frameworks that can keep pace with technology.Article | Wed Mar 24 01:00:00 EDT 2010
-
Social networking security poses risks to online privacy: RSA panel
An RSA Conference Advisory Board roundtable offered advice on security trends, including social networking security, online privacy risk and usercentric authentication.Article | Fri Mar 12 00:00:00 EST 2010
-
OIX trust framework to secure citizen-to-government authentication
The Open Identity Exchange trust framework will enable the secure authentication and exchange of online identity credentials across public and private sectors.Article | Fri Mar 05 00:00:00 EST 2010
-
Build data protection around intrusion detection, access controls
Data protection practices that are built around intrusion detection and access controls begin with a comprehensive data governance and compliance strategy.Tip
-
Go beyond a checklist audit for real IT security and data protection
Audit checklists can serve an important purpose, but a simple checklist audit can lead to poor IT security and data protection, and possible data breaches.Tip
- VIEW MORE ON : ID and access management
-
CIO Innovator: Ignore secure application development at your own risk
Security guru Chris Wysopal warns that organizations are ignoring secure application development, creating a dangerous environment where even novice hackers can wreak havoc.Video
-
Product Spotlight: Continuous data protection, Web app scanning
Our latest roundup of IT compliance products features a solution for continuous data protection and a Web application scanning tool that reviews apps for vulnerabilities.Product Spotlight | Tue Mar 08 00:00:00 EST 2011
-
Due diligence on a disaster recovery plan enables business continuity
Creating an effective disaster recovery plan is essential to business continuity, regardless of ambiguity around IT controls for data protection.Tip
-
Contingent controls complement business continuity, DR
An important aspect of managing risk is to build in contingent controls alongside your disaster recovery and business continuity implementation.Tip
-
Will Private Sector Preparedness plan spur business continuity action?
FEMA's voluntary PS-Prep will designate comprehensive standards to certify business continuity plans, but will certification change the future of BC planning?Article | Thu Feb 25 00:00:00 EST 2010
-
Private Sector Preparedness Program provides business continuity options
FEMA's Private Sector Preparedness Program provides options for those seeking to add a business continuity plan to their business. What you need to know.Tip
-
A business continuity management standard would offer consistency
BCM standards by themselves may not be necessary, but compliance with a standard is -- and a globally recognized BCM standard for consistent measurement would be a good thing.Tip
-
Are mandatory business continuity management standards good business?
Compliance with business continuity management standards demonstrates that a company is committed to protecting its business -- but the U.S. falls short of making BCM mandatory.Tip
-
Effective techniques for continuity risk management, measurement
There is no magic formula for measuring continuity risk. In the end, risk measurement is a process, not a formula. Here are some tips that can help you be as accurate as possible.Tip
-
Comparing how-to guides for business continuity standards
What needs to be done to comply with business continuity standards? First, perform a risk assessment, then define your business continuity strategy.Tip
- VIEW MORE ON : DR
-
Product Spotlight: Mobile management, compliance tools
In our latest Compliance Product Spotlight, find information on mobile device security tools and other solutions to help meet compliance objectives.News | Mon Mar 05 00:00:00 EST 2012
-
Is your SaaS system in line with SOX compliance requirements?
A SaaS vendor can provide many benefits, but adhering to SOX compliance requirements remains a concern. Here’s help to stay compliant when using Software as a Service.Tip
-
New security features for GFI WebMonitor; Encase Cybersecurity 4.3
Our roundup of IT compliance tools highlights new security features from both GFI Software and Guidance Software, and a risk management dashboard from Dow Jones Risk & Compliance.Product Spotlight | Thu Nov 10 16:27:08 EST 2011
-
NetWrix releases change auditing solution; open source apps from SPDX
Our latest Product Spotlight roundup of IT compliance tools features NetWrix's Change Reporter Suite, a change auditing solution; and SPDX 1.0, an open source software tool.Product Spotlight | Wed Aug 31 14:46:47 EDT 2011
-
PCI compliance's SMB reach
With money and reputation on the line, small business owners are finding that meeting PCI compliance standards is not something to be taken lightly.IT Compliance Advisor
-
Product Spotlight: Commtouch offers mobile device security solution
Our latest Product Spotlight roundup of IT Compliance tools features mobile device security assistance from Commtouch and the Symantec Web Gateway 5.0, a Web security solution.Product Spotlight
-
SocialLogix's social network monitoring; open source compliance
Our latest roundup of IT products features a social network monitoring solution from SocialLogix and OpenLogic's Software as a Service solution for open source compliance.Product Spotlight
-
Compliance management solutions: GRC software, mobile management tools
Our latest roundup of IT products features compliance management solutions including GRC software, a risk management tool and a cloud-based mobile device management solution.Product Spotlight
-
How is compliance hurt if software development projects are 'doomed'?
IT teams have little faith in the success of software development projects. Could the trend ultimately affect companies' adherence to compliance regulations?IT Compliance Advisor
-
Product Spotlight: IT risk and compliance, PCI compliance solutions
Our latest roundup of IT compliance products features a PCI compliance solution, application performance monitoring software and tools to help with IT risk and compliance.News | Thu Feb 17 00:00:00 EST 2011
- VIEW MORE ON : Reporting software
-
Disk encryption, data protection to stay compliant with HIPAA, HITECH
Staying vigilant about encryption and data protection not only keeps you compliant with HIPAA and HITECH, but also helps reduce overall business risk.Tip
-
Avoid the 'oops' moment: Tips for encryption management best practices
Effective encryption management can help your business stay compliant, protect its reputation and avoid embarrassment. But encryption should supplement security, not replace it.Tip
-
Zuckerberg recommits to Facebook privacy policy after FTC lashing
Facebook’s Mark Zuckerberg promises to update and re-examine the social media site’s privacy policy after the FTC flags its information-sharing practices.News | Thu Dec 01 15:48:36 EST 2011
-
Facebook spam attack raises eyebrows, alienates users
A Facebook spam attack tricked users into copying links that projected pornographic images on their news feeds. Why is Facebook taking all the blame?IT Compliance Advisor
-
New security features for GFI WebMonitor; Encase Cybersecurity 4.3
Our roundup of IT compliance tools highlights new security features from both GFI Software and Guidance Software, and a risk management dashboard from Dow Jones Risk & Compliance.Product Spotlight | Thu Nov 10 16:27:08 EST 2011
-
CIO Innovator: Ignore secure application development at your own risk
Security guru Chris Wysopal warns that organizations are ignoring secure application development, creating a dangerous environment where even novice hackers can wreak havoc.Video
-
Up to speed on data security and privacy? Take our quiz to find out
Data breaches. Malware. Social media. These are just a few of the areas causing data security and privacy headaches. Take our quiz to see how aware you are of the latest trends.Quiz
-
Researchers question HTC mobile device security
The discovery of a “massive” vulnerability in HTC’s Android devices demonstrates the need for increased mobile device security vigilance and transparency.IT Compliance Advisor
-
How private are private clouds?
Cloud and IT managers may assume information is adequately protected when using private clouds. But achieving truly secure private clouds takes some doing.IT Compliance Advisor
-
SocialLogix's social network monitoring; open source compliance
Our latest roundup of IT products features a social network monitoring solution from SocialLogix and OpenLogic's Software as a Service solution for open source compliance.Product Spotlight
- VIEW MORE ON : Encryption solutions
-
event log manager (ELM)
An event log manager (ELM) is an application that tracks changes in an organization's IT infrastructure.Definition
-
database activity monitoring (DAM)
Database activity monitoring (DAM) systems monitor and record activity in a database and then generate alerts for anything unusual.Definition
-
Log management software can aid data security, boost IT accountability
Log management software can play a vital role in data security and assuring IT accountability. Looking to start or advance your program? Learn how to handle your logs.Tip
-
Product Spotlight: Log management, security, GRC data evaluation
Our latest roundup of IT compliance products features software to help with log management, data security protection and localized governance, risk and compliance data assessment.Product Spotlight | Fri Sep 24 00:00:00 EDT 2010
-
Log management and compliance: What's the real story?
As more companies deploy security information and event management tools, as well as log management solutions, it's time to take a look at the regulations that apply to logging.Tip
-
Real-time compliance, social networking and the cloud highlight RSA
Real-time compliance, social networking security, evolving cybersecurity threats and cloud computing compliance were among the top themes at RSA Conference 2010.Article | Mon Mar 15 01:00:00 EDT 2010
-
Which SIEM system is right for regulatory compliance in my company?
Significant due diligence is necessary before an SIEM system will improve regulatory compliance management. Learn the right questions to ask.Tip
-
Improving regulatory compliance management through log analysis, SIEM
SIEM systems hold promise for improving regulatory compliance management through log analysis.Tip
-
New evaluation criteria for Web application security scanners
Impartial information about Web application security testing products has been hard to come by -- but new scanner evaluation criteria from the Web Application Security Consortium may change things.Tip
-
Security concerns may mean peer-to-peer file sharing days are over
There's likely peer-to-peer file sharing in your network, posing major IT security and privacy risks. The question is whether new laws or better scrutiny will solve this problem.Article | Tue Aug 04 00:00:00 EDT 2009
- VIEW MORE ON : Log management software
-
Prepare for the shakeout in the enterprise energy management market
Green regulatory issues have brought the enterprise energy management solutions market to the forefront. But the market is facing a shakeout, and buyers need to plan accordingly.Tip
-
Twelve ways to keep your cloud strategy compliant
When working with cloud computing providers, it's up to you to protect your data. Here are 12 ways to ensure your cloud strategy remains compliant.Tip
-
Compliance and GRC management tools
Constant updates to compliance regulations can cause headaches for IT departments. Learn more about the latest compliance products to help you with compliance and GRC management.Product Spotlight
-
Tips for explaining information governance strategy to management
Discussing an information governance strategy's value and potential with senior management can be a challenge. Here are five tips to help explain the attributes for success.Tip
-
WikiLeaks shows how better compliance technology can protect data
The latest WikiLeaks debacle again demonstrates to corporate IT shops why implementing sound compliance technology can better protect data.IT Compliance Advisor
-
IBM's smart building software ties IT to building management systems
IBM edged its smart building strategy forward with new solutions that let IT organizations tie their operations to building management systems.News | Fri Oct 01 00:00:00 EDT 2010
-
Will regulatory compliance, controlling user access bring Novell back?
Novell's future could revolve around new products that simplify the governance of user access and manage regulatory compliance.IT Compliance Advisor
-
Tougher IT security testing for compliance is on the horizon
With demand growing for more effective monitoring of security-related information, the federal government is calling for tougher IT security testing for compliance initiatives.Column | Mon Jun 14 00:00:00 EDT 2010
-
From the CIO job to king of compliance process at Iron Mountain
Iron Mountain CIO William Brown is leaving his CIO job to take on the compliance process. His aim: To make compliance more efficient for the company and its customers.Article | Mon Jun 07 00:00:00 EDT 2010
-
Achieving compliance is about more than secure data encryption
Hype says the only security control needed for achieving compliance is encryption. Reality says computer upgrades and home PCs are also issues to be concerned about.Tip
- VIEW MORE ON : Compliance services
-
Product Spotlight: Mobile management, compliance tools
In our latest Compliance Product Spotlight, find information on mobile device security tools and other solutions to help meet compliance objectives.News | Mon Mar 05 00:00:00 EST 2012
-
Solutions to help meet mobile device security, compliance objectives
In SearchCompliance.com’s latest Compliance Product Spotlight, find information on mobile device security tools and other solutions to help your organization meet compliance objectives.Product Spotlight
-
Is your SaaS system in line with SOX compliance requirements?
A SaaS vendor can provide many benefits, but adhering to SOX compliance requirements remains a concern. Here’s help to stay compliant when using Software as a Service.Tip
-
New security features for GFI WebMonitor; Encase Cybersecurity 4.3
Our roundup of IT compliance tools highlights new security features from both GFI Software and Guidance Software, and a risk management dashboard from Dow Jones Risk & Compliance.Product Spotlight | Thu Nov 10 16:27:08 EST 2011
-
NetWrix releases change auditing solution; open source apps from SPDX
Our latest Product Spotlight roundup of IT compliance tools features NetWrix's Change Reporter Suite, a change auditing solution; and SPDX 1.0, an open source software tool.Product Spotlight | Wed Aug 31 14:46:47 EDT 2011
-
Product Spotlight: Commtouch offers mobile device security solution
Our latest Product Spotlight roundup of IT Compliance tools features mobile device security assistance from Commtouch and the Symantec Web Gateway 5.0, a Web security solution.Product Spotlight
-
Application security best practices help meet compliance objectives
Aligning application security best practices and compliance objectives helps companies comply with industry regulations and standards -- and may help reduce costs in the process.Tip
-
Compliance management solutions: GRC software, mobile management tools
Our latest roundup of IT products features compliance management solutions including GRC software, a risk management tool and a cloud-based mobile device management solution.Product Spotlight
-
Prepare for the shakeout in the enterprise energy management market
Green regulatory issues have brought the enterprise energy management solutions market to the forefront. But the market is facing a shakeout, and buyers need to plan accordingly.Tip
-
Product Spotlight: Continuous compliance monitoring, information governance
Our latest roundup of IT compliance products features solutions for continuous compliance monitoring and information governance, and a platform to manage the legal hold process.Product Spotlight
- VIEW MORE ON : Policy management software
-
Five tips to help guide green compliance at your organization
As more industries push for environmentally friendly processes, green compliance is a major concern. Here are tips to help incorporate the right green IT practices at your organization.Top Five
-
Survey: Security, compliance often lacking in cloud computing strategy
Although many companies see the benefits of a solid cloud computing strategy, our survey found that security and compliance often fall by the wayside when businesses move to the cloud.News | Thu Dec 15 15:40:04 EST 2011
-
Carrier IQ software creates compliance concerns, regardless of intent
As Carrier IQ defends its data collection processes, some experts say the fact that the information being collected exists at all is a potential privacy and compliance violation.News | Wed Dec 14 12:49:00 EST 2011
-
Address information risk management now
Effective information risk management boils down to when issues are addressed. Savvy IT pros put the proper processes in place before the going gets tough.Blog
-
Don’t let your ECM solution compromise compliance functions
Compliance can get overlooked in an enterprise content management strategy. Our expert shares the hidden pitfalls of ECM solutions, and how to avoid hampering compliance functions.Tip
-
NetWrix releases change auditing solution; open source apps from SPDX
Our latest Product Spotlight roundup of IT compliance tools features NetWrix's Change Reporter Suite, a change auditing solution; and SPDX 1.0, an open source software tool.Product Spotlight | Wed Aug 31 14:46:47 EDT 2011
-
Product Spotlight: Commtouch offers mobile device security solution
Our latest Product Spotlight roundup of IT Compliance tools features mobile device security assistance from Commtouch and the Symantec Web Gateway 5.0, a Web security solution.Product Spotlight
-
Information security strategy's tie-in with the e-discovery process
An information security strategy and the e-discovery process may seem to be completely separate functions, but the two must be compatible to protect your company's information.Tip
-
SocialLogix's social network monitoring; open source compliance
Our latest roundup of IT products features a social network monitoring solution from SocialLogix and OpenLogic's Software as a Service solution for open source compliance.Product Spotlight
-
Application security best practices help meet compliance objectives
Aligning application security best practices and compliance objectives helps companies comply with industry regulations and standards -- and may help reduce costs in the process.Tip
- VIEW MORE ON : Document management software
-
Solutions to help meet mobile device security, compliance objectives
In SearchCompliance.com’s latest Compliance Product Spotlight, find information on mobile device security tools and other solutions to help your organization meet compliance objectives.Product Spotlight
-
Avoid the 'oops' moment: Tips for encryption management best practices
Effective encryption management can help your business stay compliant, protect its reputation and avoid embarrassment. But encryption should supplement security, not replace it.Tip
-
Don’t let your ECM solution compromise compliance functions
Compliance can get overlooked in an enterprise content management strategy. Our expert shares the hidden pitfalls of ECM solutions, and how to avoid hampering compliance functions.Tip
-
How is compliance hurt if software development projects are 'doomed'?
IT teams have little faith in the success of software development projects. Could the trend ultimately affect companies' adherence to compliance regulations?IT Compliance Advisor
-
New regulations, e-discovery software demand driving market behavior
The e-discovery software market is growing due to more stringent governance, risk management and compliance regulations -- a trend that’s driving the creation of smarter solutions.News | Thu Mar 17 00:00:00 EDT 2011
-
Compliance and GRC management tools
Constant updates to compliance regulations can cause headaches for IT departments. Learn more about the latest compliance products to help you with compliance and GRC management.Product Spotlight
-
Product Spotlight: IT risk and compliance, PCI compliance solutions
Our latest roundup of IT compliance products features a PCI compliance solution, application performance monitoring software and tools to help with IT risk and compliance.News | Thu Feb 17 00:00:00 EST 2011
-
Product Spotlight: Enterprise GRC and concept search for e-discovery
Our latest roundup of IT compliance products features a product portfolio from EMC to assist with enterprise GRC, and a concept search technology to enhance e-discovery.Product Spotlight | Mon Feb 07 00:00:00 EST 2011
-
Data governance: Five steps to cloud solution success
Effective data governance policies must be in place before adopting a cloud solution. Here are five steps to ensure your data governance policies are ready for a cloud migration.Tip
-
IT shops look to e-discovery, architecture tools to manage Web content
With Web content reaching tidal-wave proportions thanks to social media, compliance officers are looking at e-discovery along with architecture-based management solutions.Tip
- VIEW MORE ON : Content management software
-
When buying financial accounting system, strong steering committee is key
Before starting the financial accounting software selection process, put a clear strategy and a carefully selected steering committee in place.News | Mon Mar 26 08:46:46 EDT 2012
-
For now, push for Dodd-Frank Act regulations continues
With Barney Frank's retirement, financial reform backers will lose their loudest voice. Is this the beginning of the end for Dodd-Frank Act regulations?News | Thu Dec 08 00:00:00 EST 2011
-
Potential card fraud victims say it's the response that matters
Despite card fraud protection efforts, it's difficult to completely eliminate fraud. But, when problems do occur, a quick response can placate customers.IT Compliance Advisor
-
FAQ: GARP and how it helps you achieve better information governance
Many organizations do not have an information governance structure that works with defined record-keeping principles that ensures accountability. GARP may be your answer.FAQ
-
How the SEC's proposed IFRS will affect your accounting systems
As the SEC looks to replace Generally Accepted Accounting Principles with the International Financial Reporting Standards, CIOs should evaluate the effects on financial data and application architecture now.Article | Thu Oct 09 00:00:00 EDT 2008
-
SEC filings may soon require XBRL -- to your advantage
Here's how a new SEC filing mandate will impact IT and potentially transform financial reporting -- and business itself.Article | Wed Aug 27 00:00:00 EDT 2008
-
Financial regulatory compliance best practices, tips
Financial compliance regulations are constantly changing. Here are some CIO best practices and tips for effective compliance strategies.Tip