News
Managing governance and compliance
- April 26, 2010
26 Apr'10
BWise's CTO on the power of GRC management and controls monitoring
BWise's latest innovation integrates continuous controls monitoring (CCM) with its GRC management suite. CTO Luc Brandts talks about the relative strengths and weaknesses of each.
- April 21, 2010
21 Apr'10
Supreme Court hears 'sexting' case on employee privacy rights
The Supreme Court's decision in a "sexting" case involving a police officer and a pager could broadly affect employee privacy rights -- or not. Either way, the message for CIOs is clear.
- April 05, 2010
05 Apr'10
Interest in cyber risk insurance is growing, but is it for you?
Interest in cyberinsurance is rising in the wake of data breach notification laws and as more is learned about the potential cost of a data breach. The question is: Do you need it?
-
- March 24, 2010
24 Mar'10
FTC experts explore new online privacy frameworks
FTC experts recommend the creation of new online privacy frameworks that can keep pace with technology.
- March 23, 2010
23 Mar'10
Revised Cybersecurity Act reshapes federal compliance, education
A revision of the Cybersecurity Act removes an Internet kill-switch provision, clarifies certification and expands public-private cooperation on federal cybersecurity compliance.
- March 15, 2010
15 Mar'10
Real-time compliance, social networking and the cloud highlight RSA
Real-time compliance, social networking security, evolving cybersecurity threats and cloud computing compliance were among the top themes at RSA Conference 2010.
- March 08, 2010
08 Mar'10
What's a risk management strategy worth to your S&P credit rating?
How should an enterprise risk management strategy affect a company's credit ratings? Standard & Poor's is still trying to figure that out. Find out why.
- February 25, 2010
25 Feb'10
Congress hears testimony on location-based services and online privacy
A hearing in the House of Representatives on online privacy and location-based services suggests that geolocation data might be treated as personally identifiable information.
- February 08, 2010
08 Feb'10
Schmidt: Apply risk management to the nation's cybersecurity threats
The U.S. cybersecurity coordinator looks to risk management to reduce vulnerabilities. His call for cybersecurity research and development was matched by passage of legislation in Congress.
- January 27, 2010
27 Jan'10
New ISO 31000 risk management standard receives good early reviews
The new risk-management standard ISO 31000 answers a big conundrum in risk management: how to get everybody talking about risk in the same way. But is it for you?
-
- January 15, 2010
15 Jan'10
The top regulatory compliance trends for IT operations in 2010
The top regulatory compliance trends for 2010 include XBRL, PCI DSS, disaster recovery, vendor security management, carbon compliance and social networking risks.
- January 13, 2010
13 Jan'10
FTC set to examine strength of cloud computing security, privacy
The FTC has filed comment indicating that it will examine cloud computing security and privacy protections in an upcoming workshop.
- January 11, 2010
11 Jan'10
Will EMC acquisition put Archer ahead of the enterprise GRC pack?
A leader in IT governance, risk and compliance, Archer Technologies has worked to establish itself in enterprise GRC. Now, what does EMC's acquisition mean?
- January 11, 2010
11 Jan'10
Important regulatory compliance trends that will affect IT in 2010
The top regulatory compliance trends that will affect IT in 2010 include automation, risk management, increased regulation, stepped-up enforcement and more.
- December 30, 2009
30 Dec'09
Top IT compliance management news stories of 2009
From tougher state data protection laws to compliance in the cloud, 2009 held plenty of IT compliance management headaches. Here's a year in review.