Features

Features

• IT compliance: FAQs about IT operations, regulations and standards

  This index links to resources about the relationship between IT operations and compliance regulations and standards, including HIPAA, e-discovery, SOX and PCI.  Continue Reading

• FAQ: What is the Federal Information Security Management Act?

  The Federal Information Security Management Act aims to improve information security by requiring federal agencies to comply with standards. Learn more with this FISMA FAQ.  Continue Reading

• Compliance Product Spotlight: File share, GRC, Solvency II offerings

  Here are some of the latest compliance products and risk management solutions that can help your company stay in step with the governance, risk and compliance regulations.  Continue Reading

• FAQ: GARP and how it helps you achieve better information governance

  Many organizations do not have an information governance structure that works with defined record-keeping principles that ensures accountability. GARP may be your answer.  Continue Reading

• FAQ: An introduction to the ISO 31000 risk management standard

  Learn more about ISO 31000:2009, a new risk management standard: It's plainly written, short, process-oriented and relevant reading for anyone dealing with risk.  Continue Reading

• FAQ: What impact do mobile computing devices have on IT compliance?

  More mobile devices means more security threats. Here are things to consider in adjusting your IT compliance strategy to meet challenges brought by iPhones and the like.  Continue Reading

• What is NERC CIP, and IT's role in critical infrastructure protection?

  Under the NERC CIP, power generators and suppliers must prove NERC compliance on critical infrastructure protection provisions by the end of the second quarter. Will you be ready?  Continue Reading

• FAQ: How will mandatory encryption standards affect IT operations?

  Learn how emerging mandatory encryption standards will affect IT operations.  Continue Reading

• Governance, risk and compliance FAQ: What does GRC mean to IT strategy

  Learn how GRC coordinates governance, risk and compliance with IT strategy to create a more responsive and transparent organization.  Continue Reading

• Enterprise document management FAQ: IT operations and compliance

  Find answers and resources to frequently asked questions about the relationship of enterprise document management to IT operations and compliance.  Continue Reading

• FAQs about compliance audits in IT

  New and more complicated regulations have made compliance audits a fact of life for modern organizations. Learn about IT's role in the audit process in this FAQ.  Continue Reading

• HITECH FAQ: What is the impact of the HITECH Act on IT operations?

  This resource provides answers and resources to frequently asked questions regarding the Health Information Technology for Economic and Clinical Health (HITECH) Act.  Continue Reading

• PCI DSS FAQ: The Payment Card Industry Data Security Standard and IT

  This resource provides answers and resources to frequently asked questions regarding the Payment Card Industry Data Security Standard (PCI DSS).  Continue Reading

• FAQ: What is the impact of e-discovery law on IT operations?

  This FAQ provides guidance to IT professionals on e-discovery law, including how it affects IT operations, who it affects, what's required and what penalties can be applied.  Continue Reading

• The right business strategy for corporate social responsibility

  Something happens when the word "sustainability" comes up. People become fixated on the environmental aspects of corporate social responsibility and forget about the economics.  Continue Reading

• Chapter excerpt: Decision-making processes and IT governance

  Find out how sound decision-making processes form the foundation of IT governance policies by allocating decision rights and accountability.  Continue Reading

• Chapter excerpt: The Three Core Disciplines of IT Risk Management

  IT risk management is built on a well-structured foundation of IT assets, a well-designed and executed risk governance process and a risk-aware culture.  Continue Reading

• FAQ: What is the impact of HIPAA on IT operations?

  This FAQ provides guidance on how the Health Insurance Portability and Accountability Act affects IT operations, including what is required and what penalties are applied.  Continue Reading

• FAQ: What is the impact of Sarbanes-Oxley on IT operations?

  This FAQ provides guidance to IT professionals on how Sarbanes-Oxley (SOX) affects IT operations, including who it affects, what is required and what penalties are applied.  Continue Reading

• Does archiving email offsite affect e-discovery and compliance?

  When using a hosted email archiving service, bandwith and response time are two issues that may affect e-discovery and compliance efforts.  Continue Reading