Email Alerts
-
FAQ: How does an SSAE 16 report provide compliance control guidance?
An SSAE 16 report is a common tool for service providers demonstrating risk controls. But does SSAE 16 actually provide proof of solid GRC processes? FAQ
-
How does an SSAE 16 report guide compliance controls?
An SSAE 16 report is a common tool for service providers demonstrating risk controls. But does SSAE 16 actually provide proof of solid GRC processes? FAQ
-
FAQ: How has FCPA enforcement evolved?
Regulators have ramped up Foreign Corrupt Practices Act enforcement in recent years. Is your organization ready for the increased FCPA compliance scrutiny? FAQ
-
FAQ: How has Foreign Corrupt Practices Act enforcement evolved?
FAQ
-
FAQ: How do corporate social media policies hold up against labor law?
Corporate social media policies are designed to protect against employees posting job complaints online, but cases show labor laws’ interpretation of these rules is fuzzy at best. FAQ
-
Test your social media risk management IQ: A SearchCompliance.com quiz
Proliferating social networks have cast a spotlight on social media risk management. Take our quiz to find out if you are up to speed on social media. Quiz
-
Compliance Briefing: A guide to social media risk management strategy
Social media is valuable, but it’s also risky. Here are strategies for corporate social media policy, social network monitoring and risk management to protect sensitive information. Tutorial
-
FAQ: How will the Epsilon security breach influence email regulations?
The Epsilon security breach put a spotlight on email regulations, or the lack thereof. In this FAQ, learn what caused the breach, its cost to customers and the potential impact. F.A.Q.
-
GRC management strategies: Test your IQ
Are you up to speed on the latest governance, risk and compliance management strategies? Take our GRC quiz and find out. Quiz
-
FAQ: What is the Federal Information Security Management Act?
The Federal Information Security Management Act aims to improve information security by requiring federal agencies to comply with standards. Learn more with this FISMA FAQ. FAQ
- See more Essential Knowledge on Vulnerability assessment for compliance
-
#Compliance: Twitter buzzing about CISPA cybersecurity bill
Social media has been buzzing of late about the House passage of CISPA, as opponents argue the cybersecurity bill is a huge hit to consumer privacy. News | 22 Apr 2013
-
Mobile computing security a top priority as consumerization spreads
With consumer-targeted devices increasingly used for business purposes, mobile computing security continues to be a huge risk management concern. News | 21 Nov 2012
-
White House reportedly considering cybersecurity executive order
The White House is reportedly considering a cybersecurity executive order to push digital defense development for critical infrastructure protection. News | 13 Sep 2012
-
Data management and security in an IT-centered world
Recent events show the increased connectivity of consumers and businesses creates huge -- and often unforeseen -- data management and security concerns News | 13 Aug 2012
-
Survey: IT consumerization alive and well, but security lacking
Despite an IT consumerization influx, some organizations leave something to be desired when it comes to mobile device security, our survey found. News | 26 Jul 2012
-
Plan ahead: Developing a data breach response plan
In today's connected world, every business should prepare for data security problems. Here's how to get your organization's data breach response plan rolling. News | 22 Jun 2012
-
Corporate compliance program tips to prevent breaches
Every modern business is vulnerable to data breaches, but here’s advice on creating a solid corporate compliance program to protect your vital information. News | 08 May 2012
-
Governing the complications of social media security and compliance
Technology law expert Jeffrey Ritter discusses the obstacles to governing social media security in 21st century business and what companies can do to protect their information. News | 07 May 2012
-
New Cybersecurity Act faces same old criticism
The Cybersecurity Act of 2012 promises a new approach to online data protection, but it faces the same criticisms that plagued previous legislation. News | 15 Feb 2012
-
Online Trust Alliance guide offers tips for data protection strategies
With the number and severity of breaches increasing, data protection strategies are vital. To help, the Online Trust Alliance has released a guide to online data protection. News | 09 Feb 2012
- See more News on Vulnerability assessment for compliance
-
Three enterprise content management system security considerations
Data governance strategy gaps can create huge security risks. Here are three questions to ask when developing an enterprise content management system. Tip
-
Get a free IT or corporate compliance plan template for assessing risk
To adhere to regulatory guidelines, companies must develop strong compliance programs. These free IT and corporate compliance plan template examples can help. Tip
-
Vulnerability assessment vs. penetration test: Which is right for you?
Learn the differences between a vulnerability assessment and a penetration test and how to determine which is better for your IT compliance processes. Tip
-
Top information security strategy tips for GRC professionals
Information security strategy is vital to the modern company. Read these top tips from SearchCIO.com to ensure your business is not left vulnerable. Tip
-
The business case for financial compliance at your organization
Organizations should view financial compliance as a byproduct of business strategy best practices rather than just a way to avoid penalties and fines. Tip
-
Pilot program best practices to help determine your GRC requirements
It’s important to be familiar with your organization's exact GRC requirements when choosing which tools to buy, build or outsource. Here’s how a pilot program can help guide you. Tip
-
Vulnerabilities exposed during disposal of used computers
Upgrading equipment? Proper disposal of used computers is necessary to reduce risk, because sensitive data is vulnerable when old electronics go out the door. Tip
-
Act now to prevent smartphone security risks at your organization
Smartphone security risks have become a huge compliance challenge for many enterprises, but being proactive and implementing security policies can help prevent smartphone hacking. Tip
-
How protecting against the OWASP Top 10 helps prevent compliance risk
Mapping security processes to protect against the OWASP Top 10 could ease Web application vulnerabilities and help some companies stay compliant. Tip
-
Social media monitoring solutions track sites, protect your brand
Social media's popularity has left some companies vulnerable to bad word of mouth or leaks of confidential information. But social network monitoring tools are available to help. Tip
- See more Tips on Vulnerability assessment for compliance
-
internal control
An internal control is a business practice, policy or procedure that is established within an organization to create value or minimize risk. Definition
-
#Compliance: Twitter buzzing about CISPA cybersecurity bill
Social media has been buzzing of late about the House passage of CISPA, as opponents argue the cybersecurity bill is a huge hit to consumer privacy. News
-
FAQ: How does an SSAE 16 report provide compliance control guidance?
An SSAE 16 report is a common tool for service providers demonstrating risk controls. But does SSAE 16 actually provide proof of solid GRC processes? FAQ
-
How does an SSAE 16 report guide compliance controls?
An SSAE 16 report is a common tool for service providers demonstrating risk controls. But does SSAE 16 actually provide proof of solid GRC processes? FAQ
-
Three enterprise content management system security considerations
Data governance strategy gaps can create huge security risks. Here are three questions to ask when developing an enterprise content management system. Tip
-
Mobile computing security a top priority as consumerization spreads
With consumer-targeted devices increasingly used for business purposes, mobile computing security continues to be a huge risk management concern. News
-
Get a free IT or corporate compliance plan template for assessing risk
To adhere to regulatory guidelines, companies must develop strong compliance programs. These free IT and corporate compliance plan template examples can help. Tip
-
Vulnerability assessment vs. penetration test: Which is right for you?
Learn the differences between a vulnerability assessment and a penetration test and how to determine which is better for your IT compliance processes. Tip
-
White House reportedly considering cybersecurity executive order
The White House is reportedly considering a cybersecurity executive order to push digital defense development for critical infrastructure protection. News
-
Data management and security in an IT-centered world
Recent events show the increased connectivity of consumers and businesses creates huge -- and often unforeseen -- data management and security concerns News
-
Top information security strategy tips for GRC professionals
Information security strategy is vital to the modern company. Read these top tips from SearchCIO.com to ensure your business is not left vulnerable. Tip
- See more All on Vulnerability assessment for compliance
About Vulnerability assessment for compliance
Organizations must effectively use technology to share data while protecting personal information from identity theft. Learn how to assess vulnerabilities, including how to analyze data security and privacy issues, with the latest news, advice, commentary and best practices for regulatory compliance professionals.