Managing governance and compliance
- February 09, 2018
With enforcement of the EU General Data Protection Regulation (GDPR) in the offing, organizations are busy preparing for a new era in privacy regulation. But UK companies that are Cyber Essentials ...
- September 19, 2017
As the use of drones continues to expand, regulators are trying to make sure rules governing the burgeoning drone industry ensure safety, but don't hinder innovation.
- June 22, 2017
Regulatory compliance initiatives remain at the top of GRC professionals' lists of priorities this year, according to TechTarget's annual IT Priorities survey.
- October 31, 2016
Records management is more vital than ever to business success, but not enough organizations care about it, according to Rick Tucker. To prove it, Tucker, vice president of sales and marketing at ...
- September 26, 2016
As regulators increasingly seek proof of data integrity, company leaders are realizing that strong records management and compliance business processes can be a revenue driver.
- June 24, 2016
Blockchain technology, a distributed ledger that underpins cryptocurrencies, has become a huge factor the financial services space as virtual currencies such as bitcoin have become increasingly popular. The rise of blockchain could radically change ...
- April 15, 2016
The FCC's newly proposed privacy protection rules requires broadband and wireless providers to obtain consumer consent before collecting and sharing their data, but some are concerned this approach ...
- December 29, 2015
We've rounded up the top 10 governance, risk and compliance stories of the year, with timely advice about GRC strategy, 2015 compliance challenges and best practices for overcoming data security issues.
- December 03, 2015
New laws encourage cybersecurity information sharing between the public and private sector, but will the data protection measures infringe on privacy?
- December 02, 2015
As organizations' data threats and regulatory demands increase, GRC professionals are seeing their IT compliance management skill sets become highly prized across industries.
- May 14, 2015
In this #GRCChat, participants discuss the causes behind information security breaches and how enterprises can protect against them to improve IT security practices.
- May 12, 2015
In this #GRCChat, participants discuss how changes in technology like consumerization and evolving security threats affect GRC management and consider who should be responsible for that management.
- April 28, 2015
Companies operating in the digital age generate more data than ever before. Storage costs also remain relatively cheap, so many businesses keep data "just in case" it is needed for business purposes or to settle a compliance issue. With so much data...
- March 17, 2015
The FCC gave new net neutrality regulations the go-ahead, but the battle for an open Internet is hardly over. In this #GRCChat recap, find out whether the new regulations mean good news for innovation and consumer privacy.
- February 05, 2015
Have you considered the GRC implications of wearables in the workplace? In this #GRCChat recap, participants consider the impact of wearables on established policies and how businesses can ensure data security and privacy.
- January 29, 2015
In this #GRCChat, find out what GRC features to keep top of mind when designing a BYOD security policy -- and how to ensure employees are on board.
- January 20, 2015
There are many nebulous enterprise GRC and security terms that need to be scrapped. In this #GRCChat recap, SearchCompliance followers share the lingo they can't wait to jettison this year.
- January 19, 2015
This could be a big year for GRC technologies. #GRCChat-ters predict which tools and processes will continue their upward trend in 2015 and which will wane.
- January 13, 2015
Can we leave the "year of the breach" title to 2014? In this #GRCChat recap, participants shared their enterprise GRC and security predictions for 2015.
- January 07, 2015
A new year means a fresh start. In this #GRCChat recap, participants assess their current IT challenges and share their GRC 2015 resolutions.
- January 06, 2015
Information security is moving up the priority list at many organizations. In this #GRCChat recap, participants look back at 2014 to discuss their top IT GRC regrets.
- December 29, 2014
In our "Top 10 of 2014," find the most popular SearchCompliance articles from the past year offering advice on deploying a cutting-edge GRC strategy.
- November 13, 2014
As their roles become increasingly integral to corporate success, IT security and compliance professionals want more input during business decisions.
- September 12, 2014
Participants in the latest #GRCchat discuss how to overcome the legal discovery challenges presented by vendor management and social media data.
- July 03, 2014
Are you ready to pay to play if the FCC's net neutrality ruling stands? #GRCchat participants share how a usage-based pricing structure could negatively impact small business and innovation.
- June 25, 2014
#GRCchat participants discussed the FCC net neutrality proposal and what it might mean for companies, ISPs and consumers in this recap of SearchCompliance's monthly Twitter chat.
- June 11, 2014
Join @ITCompliance June 19 at noon EDT to discuss the FCC's net neutrality ruling and its potential effect on enterprise services, innovation and GRC.
- April 09, 2014
Join our #GRCchat Thursday, April 17, to discuss the roles of tracking and managing vital IT assets for an information lifecycle governance strategy.
- March 21, 2014
In this video, GRC analyst Michael Rasmussen discusses why third-party management has become one of the fastest-growing segments of the GRC market.
- March 17, 2014
Cloud computing and compliance carry a host of GRC complications. Join our #GRCchat March 27 to hash it out with SearchCompliance staff and experts.
- February 04, 2014
What is mobile data, which devices produce it, and how can you protect it? Join SearchCompliance Feb. 20 to discuss mobile governance and compliance.
- January 06, 2014
What information governance framework best suits your organization? Chat about GRC with us on Twitter during SearchCompliance's inaugural tweet jam.
- December 20, 2013
In our Top 10 of 2013, read SearchCompliance's most-viewed compliance articles from the past year for advice on deploying a cutting-edge GRC strategy.
- December 20, 2013
As businesses expand their IT security and compliance focus, GRC professionals are seeing salary increases with their broadened responsibilities.
- November 18, 2013
Dodd-Frank conflict mineral provisions create new disclosure rules for public companies. In this tip, learn how to prepare for the regulations.
- October 25, 2013
The controversy surrounding U.S.-based online surveillance continues, as more revelations concerning NSA data-gathering activities come to light.
- October 14, 2013
ISSA International Conference attendees talked whistleblowing, geolocation threats, real-time risk and more on Twitter during the Nashville gathering.
- August 29, 2013
The online debate surrounding the NSA's data-gathering activities persists, as revelations surrounding the PRISM program continue to come to light.
- July 17, 2013
Is your organization gathering and properly acting upon risk intelligence? Our latest Product Spotlight roundup focuses on risk-centric GRC tools.
- June 28, 2013
Opinions abound regarding Edward Snowden and his leak of a secret NSA surveillance program, as U.S. officials increase efforts to extradite him.
- June 10, 2013
An NSA program's surveillance activities are leading to discussions on online privacy issues and widely varying opinions on where to draw the line.
- May 14, 2013
Twitter was abuzz after a report of possible updates to wiretapping laws. Opponents argue it would dramatically alter civil rights and online privacy.
- April 22, 2013
Social media has been buzzing of late about the House passage of CISPA, as opponents argue the cybersecurity bill is a huge hit to consumer privacy.
- April 04, 2013
The global economy creates unique risks and regulatory compliance rules for multinational corporations, forcing them to re-examine GRC processes.
- April 01, 2013
Ace Hardware Director of Risk Management William J. Montanez discusses the key aspects of, and obstacles to, a strategy for managing corporate risk.
- March 14, 2013
President Obama met with high-profile business leaders this week to discuss how the private sector can work together on U.S. cybersecurity strategy.
- January 31, 2013
One analysis found an uptick in breaches in 2012, but simple, organization-wide controls could be the key to maintaining data security and privacy.
- January 24, 2013
Business risk remains a top concern, so organizers of an upcoming conference promise real-world examples and expert tips on cutting-edge ERM strategy.
- December 21, 2012
Compliance strategy will continue to be hugely important to businesses in 2013, according to respondents to the TechTarget IT Priorities Survey.
- December 21, 2012
In our 'top 12 of 2012,' read SearchCompliance.com's most-viewed articles from the past year, and discover GRC management advice and best practices.
- December 07, 2012
As compliance rules and IT risk expand, GRC professionals are looking forward to new challenges, according to the TechTarget IT Salary Survey 2012.
- October 26, 2012
A self-policing 'culture of compliance' helps avoid corporate risk and SEC enforcement actions, GRC experts said at a recent roundtable discussion.
- October 25, 2012
Our latest roundup of IT compliance products features two IT GRC management tools that help businesses evaluate their assets' and programs' security.
- October 18, 2012
A comprehensive GRC program that influences company-wide strategy provides big business benefits, say organizers of the upcoming Chicago GRC Summit.
- September 18, 2012
The New York Stock Exchange has agreed to a $5 million compliance settlement in response to SEC charges of improper distribution of market data.
- September 13, 2012
The White House is reportedly considering a cybersecurity executive order to push digital defense development for critical infrastructure protection.
- June 25, 2012
Analyst Chris McClean discusses the chief compliance officer's role as risk management and compliance are increasingly tied to business success.
- June 18, 2012
As organizational data proves invaluable, protecting it becomes more vital, so compliance departments can expect a bigger voice in business strategy.
- June 08, 2012
Our latest compliance product roundup spotlights regulatory compliance management solutions recently released by MetricStream and RSA Security Management.
- May 14, 2012
Advanced technologies create more data than ever for companies to protect, but it's not all bad news. Here's why using the latest cutting-edge tools can help your GRC strategy.
- May 14, 2012
The GRC technology market has become increasingly targeted but companies' buying decisions have not followed suit. How can you make sure you're getting the most bang for your buck?
- May 07, 2012
Technology law expert Jeffrey Ritter discusses the obstacles to governing social media security in 21st century business and what companies can do to protect their information.
- May 04, 2012
GRC platform vendor Aruvio has rolled out AruvioGRC, describing the cloud-based tool as faster, cheaper and easier to use than conventional GRC software.
- April 27, 2012
Presenters at the upcoming GRC Summit Boston preview what attendees can expect to learn about optimizing their GRC strategy in today's regulatory landscape.
- April 23, 2012
ISACA’s update to its popular COBIT 5 framework incorporates a business-wide approach the organization says helps enterprises maximize their information and technology assets.
- March 16, 2012
The annual Excellence.gov Awards recognize the best service-enhancing government IT programs -- and the winners prove that innovation does not have to come at the expense of compliance.
- February 20, 2012
- December 15, 2011
Although many companies see the benefits of a solid cloud computing strategy, our survey found that security and compliance often fall by the wayside when businesses move to the cloud.
- December 12, 2011
As mandatory eXtensible Business Reporting Language use becomes the norm in business communications, one expert says XBRL tagging can assist risk management and analysis.
- November 23, 2011
In 2011, mobile malware and targeted attacks against big-name companies were among the top online security threats. Here’s why you need to prepare for more of the same in 2012.
- October 24, 2011
- September 26, 2011
The regulatory landscape's evolution requires close attention to risk management and compliance processes. But GRC also makes good business sense, and can improve your bottom line.
- July 11, 2011
The focus for compliance officers has shifted to fostering the development of an ethical corporate culture. But there are obstacles to promoting ethical behavior in a business setting.
- July 05, 2011
Companies need an effective way to mitigate the risks of increasingly ubiquitous social media. But establishing a solid corporate social media policy is no easy task.
- June 02, 2011
As regulations increase, more compliance organizations and professionals are seeing the value of social networking tools to share information on regulatory compliance services.
- May 20, 2011
HiSoftware chief technology officer Thomas Logan discusses under-the-radar -- but common -- data security and privacy lapses that cause compliance risks for many organizations.
- May 19, 2011
In the need for some IT training? Check out our list of GRC conferences designed to help your enterprise stay current with the latest compliance regulations and GRC strategy trends.
- April 25, 2011
The number and scope of compliance regulations seem to constantly change. But several industry-specific compliance organizations can help you navigate the maze.
- April 14, 2011
Two big-name senators have proposed online privacy legislation called the Commercial Privacy Bill of Rights. Some IT organizations fear it will hurt business if enacted.
- April 04, 2011
In recent years, GRC's influence has grown and regulations have multiplied. In response, many organizations are launching compliance committees and corporate compliance policies.
- January 17, 2011
Our latest roundup of IT compliance products features enterprise risk management software, a cloud computing security solution and enterprise compliance automation.
- January 13, 2011
A successful IT governance strategy requires executive support, so how can you make management buy-in a business reality? Here are five techniques that can help.
- December 06, 2010
Our latest roundup of IT compliance products features new solutions to assist enterprises with data protection, and self-service reporting features that help ensure GRC.
- November 19, 2010
Sales of GRC platforms have grown by double digits this year, and are projected to continue to rise in 2011.
- November 15, 2010
Our latest roundup of IT compliance products features solutions to assist with GRC management, including implementing governance, risk and compliance controls.
- November 08, 2010
A recent study concludes that federal IT purchasing and management can be improved through stronger IT leadership, managing risk more effectively and agile development practices.
- August 16, 2010
Here are some of the latest compliance products and risk management solutions that can help your company stay in step with the governance, risk and compliance regulations.
- June 29, 2010
A broad challenge to the Sarbanes-Oxley Act opened up an avenue to overturning the 2002 antifraud law. But the Supreme Court ruled narrowly, leaving SOX to live another day.
- June 07, 2010
Iron Mountain CIO William Brown is leaving his CIO job to take on the compliance process. His aim: To make compliance more efficient for the company and its customers.
- April 26, 2010
BWise's latest innovation integrates continuous controls monitoring (CCM) with its GRC management suite. CTO Luc Brandts talks about the relative strengths and weaknesses of each.
- April 21, 2010
The Supreme Court's decision in a "sexting" case involving a police officer and a pager could broadly affect employee privacy rights -- or not. Either way, the message for CIOs is clear.
- March 23, 2010
A revision of the Cybersecurity Act removes an Internet kill-switch provision, clarifies certification and expands public-private cooperation on federal cybersecurity compliance.
- March 15, 2010
Real-time compliance, social networking security, evolving cybersecurity threats and cloud computing compliance were among the top themes at RSA Conference 2010.
- February 25, 2010
A hearing in the House of Representatives on online privacy and location-based services suggests that geolocation data might be treated as personally identifiable information.
- February 08, 2010
The U.S. cybersecurity coordinator looks to risk management to reduce vulnerabilities. His call for cybersecurity research and development was matched by passage of legislation in Congress.
- January 27, 2010
The new risk-management standard ISO 31000 answers a big conundrum in risk management: how to get everybody talking about risk in the same way. But is it for you?
- January 15, 2010
The top regulatory compliance trends for 2010 include XBRL, PCI DSS, disaster recovery, vendor security management, carbon compliance and social networking risks.
- January 11, 2010
A leader in IT governance, risk and compliance, Archer Technologies has worked to establish itself in enterprise GRC. Now, what does EMC's acquisition mean?
- December 30, 2009
From tougher state data protection laws to compliance in the cloud, 2009 held plenty of IT compliance management headaches. Here's a year in review.
- December 16, 2009
ISACA has released a risk management framework to help enterprise compliance officers identify, govern and manage IT risk. The Risk IT framework is aligned with COBIT.