-
IT compliance: FAQs about IT operations, regulations and standards
This index links to resources about the relationship between IT operations and compliance regulations and standards, including HIPAA, e-discovery, SOX and PCI. FAQs
-
Enterprise document management FAQ: IT operations and compliance
Find answers and resources to frequently asked questions about the relationship of enterprise document management to IT operations and compliance. FAQ
-
Chapter excerpt: The Three Core Disciplines of IT Risk Management
IT risk management is built on a well-structured foundation of IT assets, a well-designed and executed risk governance process and a risk-aware culture. Chapter Excerpt
-
FAQ: What is the impact of Sarbanes-Oxley on IT operations?
This FAQ provides guidance to IT professionals on how Sarbanes-Oxley (SOX) affects IT operations, including who it affects, what is required and what penalties are applied. FAQ
-
Gartner: Dodd-Frank regulations compliance demands compliance bureau
All companies, not just financials, must comply with the Dodd-Frank Act; Gartner recommends having a compliance bureau monitor the implications. News | 27 Jun 2011
-
Feds take notice as online consumer privacy remains in the spotlight
Recent data breaches have made online consumer privacy a priority. The federal government is now attempting to take action that includes introducing "do not track" legislation. News | 13 May 2011
-
New class of compliance professionals will drive new certifications
Legislation such as the Sarbanes-Oxley Act is creating a new class of compliance professionals, but coming up with new certifications for them may not be so easy. News | 06 Aug 2010
-
Supreme Court rules narrowly on a challenge to the Sarbanes-Oxley Act
A broad challenge to the Sarbanes-Oxley Act opened up an avenue to overturning the 2002 antifraud law. But the Supreme Court ruled narrowly, leaving SOX to live another day. Article | 29 Jun 2010
-
Paychex risk management analysis method shoots and scores
How do you set risk management priorities? Learn how one company whittles its way down to a Final Four. News | 24 May 2010
-
GRC software takes SOX compliance from chaos to risk-based management
The Williams Cos. Inc. had more than 900 IT controls related to SOX compliance, many redundant. With patience and "highly configurable" GRC software, the chaos is under control. Article | 17 May 2010
-
What will the PCAOB case in the Supreme Court mean for SOX compliance?
A case before the U.S. Supreme Court is challenging the authority of the entity that oversees public company auditors -- but don't expect SOX compliance to go away. Article | 28 Dec 2009
-
Addressing compliance requirements in cloud computing contracts
As CIOs look to cloud computing for data backup and storage, compliance requirements must be spelled out and met -- or the data brought back down to earth. Article | 11 Jun 2009
-
Financial crimes resulting in increased compliance enforcement
Financial crimes are on the rise, according to the current and former U.S. deputy attorneys general, who say the public should expect to see aggressive enforcement of the laws. Article | 08 Jun 2009
-
Ex-SEC chief Pitt decries state of Sarbanes-Oxley and risk management
Former SEC chairman Harvey Pitt has a blunt assessment of SOX as well as the current state of the regulatory system, calling it "badly broken." Article | 05 Jun 2009
- See More: News on SOX and other public company compliance requirements
-
How protecting against the OWASP Top 10 helps prevent compliance risk
Mapping security processes to protect against the OWASP Top 10 could ease Web application vulnerabilities and help some companies stay compliant. Tip
-
Global IT outsourcing raises compliance, risk management concerns
Outsourcing can add to compliance risk management problems for federally regulated groups whose work involves sensitive areas like national security. Tip
-
Like past efforts, new cybersecurity legislation could get complicated
The Cybersecurity and Internet Freedom Act of 2011 is the latest attempt at cybersecurity legislation but, like past cybersecurity efforts, it could have unintended consequences. Tip
-
Increased depth of compliance regulations forces companies to adapt
The increased breadth and depth of compliance regulations has forced companies to reorganize their organization and add the position of chief compliance officer. Tip
-
Some benefit from Sarbanes-Oxley; others struggle with SOX compliance
SOX compliance requirements can lead to process improvements and data governance for larger firms, but smaller shops still struggle with Sarbanes-Oxley. Tip
-
How to increase stakeholder value through corporate compliance
Stakeholders know the importance of corporate compliance to a company's success. Properly gauging stakeholders' expectations can help ensure compliance efforts will satisfy them. Tip
-
Bilski v. Kappos: The beginning of the end for business method patents
The Supreme Court's Bilski v. Kappos ruling seriously mutilated the business method patent zombie that has stalked the software and Internet world for more than a decade. Tip
-
Bilski v. Kappos: Failing to slay the business method patent zombie
In the wake of the U.S. Supreme Court's Bilski v. Kappos ruling, business method patents are now the zombies of the intellectual property world. Tip
-
Discovery process puts onus on electronic records management tools
Electronic records are now considered equivalent to paper records in the discovery process for regulatory compliance or legal cases, but new search tools are available to help. Tip
-
Electronic discovery critical to health of company, IT organization
Electronic discovery can turn into an e-nightmare. But an efficient and lean IT organization and a good litigation contingency plan is the key to sustained success. Tip
- See More: Tips on SOX and other public company compliance requirements
-
Wal-Mart 'rightsizes' Sarbanes-Oxley plan for corporate governance
Corporations are still tuning Sarbanes-Oxley. In this podcast, Lyle Smith, director of SOX compliance at Wal-Mart, discusses how to "rightsize" the compliance bellwether. Podcast
-
Business model risk is a key part of your risk management strategy
Management consultants Amit Sen and John Vaughan discuss business model risk, a way to apply risk management policies to new or changed business processes. Podcast transcript
-
How protecting against the OWASP Top 10 helps prevent compliance risk
Mapping security processes to protect against the OWASP Top 10 could ease Web application vulnerabilities and help some companies stay compliant. Tip
-
Global IT outsourcing raises compliance, risk management concerns
Outsourcing can add to compliance risk management problems for federally regulated groups whose work involves sensitive areas like national security. Tip
-
Gartner: Dodd-Frank regulations compliance demands compliance bureau
All companies, not just financials, must comply with the Dodd-Frank Act; Gartner recommends having a compliance bureau monitor the implications. News
-
Feds take notice as online consumer privacy remains in the spotlight
Recent data breaches have made online consumer privacy a priority. The federal government is now attempting to take action that includes introducing "do not track" legislation. News
-
Like past efforts, new cybersecurity legislation could get complicated
The Cybersecurity and Internet Freedom Act of 2011 is the latest attempt at cybersecurity legislation but, like past cybersecurity efforts, it could have unintended consequences. Tip
-
Increased depth of compliance regulations forces companies to adapt
The increased breadth and depth of compliance regulations has forced companies to reorganize their organization and add the position of chief compliance officer. Tip
-
Some benefit from Sarbanes-Oxley; others struggle with SOX compliance
SOX compliance requirements can lead to process improvements and data governance for larger firms, but smaller shops still struggle with Sarbanes-Oxley. Tip
-
IT compliance: FAQs about IT operations, regulations and standards
This index links to resources about the relationship between IT operations and compliance regulations and standards, including HIPAA, e-discovery, SOX and PCI. FAQs
-
New class of compliance professionals will drive new certifications
Legislation such as the Sarbanes-Oxley Act is creating a new class of compliance professionals, but coming up with new certifications for them may not be so easy. News
-
How to increase stakeholder value through corporate compliance
Stakeholders know the importance of corporate compliance to a company's success. Properly gauging stakeholders' expectations can help ensure compliance efforts will satisfy them. Tip
- See More: All on SOX and other public company compliance requirements
About SOX and other public company compliance requirements
The Sarbanes-Oxley Act (SOX) is intended to protect shareholders and the general public from accounting errors and fraudulent practices by dictating which records should be stored, and for how long. Learn more about SOX with the latest information, news, advice, commentary and resources for compliance professionals.