-
What is NERC CIP, and IT's role in critical infrastructure protection?
Under the NERC CIP, power generators and suppliers must prove NERC compliance on critical infrastructure protection provisions by the end of the second quarter. Will you be ready? FAQ
-
With influx of gifted gadgets, mobile device security top of mind for IT
After the holidays, many companies are facing an influx of mobile devices that could affect compliance with various regulations. Is your mobile device security strategy ready? News | 03 Jan 2012
-
Product Spotlight: Data access management, environmental compliance
Our latest roundup of IT compliance products features solutions to assist enterprises with data access management, environmental compliance and data security. News | 21 Oct 2010
-
FTC experts explore new online privacy frameworks
FTC experts recommend the creation of new online privacy frameworks that can keep pace with technology. Article | 24 Mar 2010
-
Social networking security poses risks to online privacy: RSA panel
An RSA Conference Advisory Board roundtable offered advice on security trends, including social networking security, online privacy risk and usercentric authentication. Article | 12 Mar 2010
-
OIX trust framework to secure citizen-to-government authentication
The Open Identity Exchange trust framework will enable the secure authentication and exchange of online identity credentials across public and private sectors. Article | 05 Mar 2010
-
Electronic privacy integral to identity management standards, says DHS
At the OASIS conference, government officials confront the intersection of electronic privacy and identity management standards, but IT pros have concerns. Article | 08 Oct 2009
-
Healthcare, cybersecurity policy and privacy on legislative agenda
As Congress moves into its fall term, healthcare, cybersecurity policies and privacy top a legislative to-do list that will affect compliance and security pros. Article | 17 Sep 2009
-
OpenID federated identity framework set for .gov authentication pilot
A government authentication test of the OpenID identity framework could usher in the beginnings of the "identity economy." Article | 15 Sep 2009
-
Compliance concerns dog enterprise 2.0 collaboration platforms
CIOs need to walk a fine line when deploying enterprise 2.0 collaboration platforms: keep access open and information flowing, but enable security and compliance. Article | 08 Jul 2009
-
Twitter security risks, popularity spark regulatory concerns
Twitter can be used for social good, business and journalism, but the potential for exploitation by cybercriminals and noncompliance with regulatory requirements is real and growing. Article | 19 Jun 2009
- See More: News on ID and access management for compliance
-
Vigilance, awareness key to enterprise cybercrime prevention
Consumer-targeted technologies are making their way into the workforce, increasing the need for vigilant cybercrime prevention strategies and mobile management solutions. Tip
-
Build data protection around intrusion detection, access controls
Data protection practices that are built around intrusion detection and access controls begin with a comprehensive data governance and compliance strategy. Tip
-
Go beyond a checklist audit for real IT security and data protection
Audit checklists can serve an important purpose, but a simple checklist audit can lead to poor IT security and data protection, and possible data breaches. Tip
-
Why CIOs need to get real about identity and access management in 2010
Changes in business, employee needs and regulatory mandates are reshaping identity and access management (IAM) and giving rise to service providers. Should you sign on with one? Tip
-
Data loss prevention technology matures but is still no cure-all
Data loss prevention technology shows signs of maturation and is proving to be flexible for meeting regulatory compliance mandates. Tip
-
D.C. CTO sees compliance, cost savings benefits to cloud computing
The CTO for the District of Columbia is staying compliant while finding cost savings and ROI through his cloud computing platform. Tip
-
Social media platforms demand a clear employee Internet use policy
Social media platforms make it easier than ever for employees to post information that could be harmful to your business. Here are some steps to take. Tip
-
Pietrylo case a cautionary Web 2.0 communications compliance failure
Enterprises must balance mitigation and respect for employee creativity and expression in Web 2.0 communications, while allowing for marketing and public relations. Tip
-
What's in the White House Cyberspace Policy Review you need to know?
The White House Cyberspace Policy Review includes recommendations that could fundamentally change the approach to security for U.S. business and organizations. Tip
-
Why it may not be ideal for your lawyer to be your compliance officer
While lawyers bring a certain expertise to the table, business leaders need a broader range of technical, security and communications skills in their compliance officers. Tip
- See More: Tips on ID and access management for compliance
-
database activity monitoring (DAM)
Database activity monitoring (DAM) systems monitor and record activity in a database and then generate alerts for anything unusual. Word
-
With influx of gifted gadgets, mobile device security top of mind for IT
After the holidays, many companies are facing an influx of mobile devices that could affect compliance with various regulations. Is your mobile device security strategy ready? News
-
Vigilance, awareness key to enterprise cybercrime prevention
Consumer-targeted technologies are making their way into the workforce, increasing the need for vigilant cybercrime prevention strategies and mobile management solutions. Tip
-
Product Spotlight: Data access management, environmental compliance
Our latest roundup of IT compliance products features solutions to assist enterprises with data access management, environmental compliance and data security. News
-
database activity monitoring (DAM)
Database activity monitoring (DAM) systems monitor and record activity in a database and then generate alerts for anything unusual. Word
-
What is NERC CIP, and IT's role in critical infrastructure protection?
Under the NERC CIP, power generators and suppliers must prove NERC compliance on critical infrastructure protection provisions by the end of the second quarter. Will you be ready? FAQ
-
FTC experts explore new online privacy frameworks
FTC experts recommend the creation of new online privacy frameworks that can keep pace with technology. Article
-
Social networking security poses risks to online privacy: RSA panel
An RSA Conference Advisory Board roundtable offered advice on security trends, including social networking security, online privacy risk and usercentric authentication. Article
-
OIX trust framework to secure citizen-to-government authentication
The Open Identity Exchange trust framework will enable the secure authentication and exchange of online identity credentials across public and private sectors. Article
-
Build data protection around intrusion detection, access controls
Data protection practices that are built around intrusion detection and access controls begin with a comprehensive data governance and compliance strategy. Tip
-
Go beyond a checklist audit for real IT security and data protection
Audit checklists can serve an important purpose, but a simple checklist audit can lead to poor IT security and data protection, and possible data breaches. Tip
- See More: All on ID and access management for compliance
About ID and access management for compliance
Compliance requires knowledge of who's accessing your information, and how and when they're doing it. Keep up with identity (ID) and access management technologies with the latest news and resources on encryption, PCI DSS, FFIEC compliance and multi-factor authentication.