Manage

Revamp your information lifecycle management strategy for endless data

More data, more problems? #GRCchat participants discuss new governance challenges and how to revamp an information lifecycle management strategy.

Emily McLaughlin, Content Development Strategist

Published: 21 Apr 2014

Is your organization equipped to effectively manage information-related assets? An information lifecycle management strategy to track data assets from their creation, use, storage and eventual demise is no easy feat -- especially in the digital age. Modern businesses are responsible for endless amounts of data, requiring IT leaders to constantly revise information lifecycle governance plans due to evolving GRC needs.

During our April #GRCchat, SearchCompliance asked participants what information governance challenges have emerged as data continuously flows into organizations.

Q1 With modern biz responsible for endless data, how do compliance and risk management needs create info governance challenges? #GRCChat

— SearchCompliance.com (@ITCompliance) April 17, 2014

SearchCompliance Site Editor Ben Cole kicked off the discussion by suggesting that the more data companies retain, the more governance problems they will see pop up -- and offered some possible solutions.

A1 More data=more problems, especially from a regulatory compliance standpoint. Strict retention/deletion policies a must #GRCChat

— Ben Cole (@BenjaminCole11) April 17, 2014

A1 (cont) compliance requires strict info management rules- and they sometimes overlap #GRCChat

— Ben Cole (@BenjaminCole11) April 17, 2014

It's simple: With more data on their plates, IT organizations are forced to beef up information management, enlist stricter data retention policies across their company and encourage periodic deletion with specific company needs in mind. Let's be realistic, not all data should be stored forever. This led to SearchCIO Managing Editor Rachel Lebeaux's comment:

@ITCompliance A1 Many orgs want to retain ALL of their data (plus the kitchen sink). Unrealistic to pay to store/analyze all of it. #GRCchat
— RachelTT (@RachelatTT) April 17, 2014

SearchCIO Editorial Director Christina Torode asked the crowd about the cloud's influence on information lifecycle governance:

@CTorodeTT yes no doubt increasing cloud use but companies still should be concerned with GRC info governance #GRCChat
— Ben Cole (@BenjaminCole11) April 17, 2014

Recent #GRCchat recaps

GRC cloud computing challenges

Remote wipe safeguards data

Who is responsible for security in cloud?

Successful information management requires a clear understanding of data asset priorities. Massive amounts of mobile and machine-generated big data are coming in -- and not necessarily going out. IT teams must contemplate ranking information assets based on its level of importance and then govern from there:

@LTucci that would be a good start- and get rid of info you don't need anymore- what you no longer have can't hurt you #GRCChat
— Ben Cole (@BenjaminCole11) April 17, 2014

@LTucci yes very true- definitely have to be careful about what you get rid of, but like @RachelatTT said can't keep everything #GRCChat
— Ben Cole (@BenjaminCole11) April 17, 2014

Is your IT security team ready to decide which information assets to hold close and which to expire? What info governance challenges are created by new information-related compliance and risk management needs? Sound off in the comment section below.

Our next #GRCchat will be held May 15 at 12:00 p.m. EST. Follow @ITCompliance on Twitter to learn about the topic when it's announced.

Dig Deeper on Data retention and compliance software

Is consumer data privacy at risk under cybersecurity legislation? #GRCChat participants discuss how cybersecurity legislation could hurt data privacy and what personal information protections should be included in the new rules.

Will new net neutrality regulations spur investment and innovation? The FCC gave new net neutrality regulations the go-ahead, but the battle for an open Internet is hardly over. In this #GRCChat recap, find out whether the new regulations mean good news for innovation and consumer privacy.

Wearables in the workplace strain existing GRC policies Have you considered the GRC implications of wearables in the workplace? In this #GRCChat recap, participants consider the impact of wearables on established policies and how businesses can ensure data security and privacy.

2015 might be a big year for these GRC technologies This could be a big year for GRC technologies. #GRCChat-ters predict which tools and processes will continue their upward trend in 2015 and which will wane.

GRC 2015: What do you hope to achieve this year? A new year means a fresh start. In this #GRCChat recap, participants assess their current IT challenges and share their GRC 2015 resolutions.

What were your top IT GRC regrets from 2014? Information security is moving up the priority list at many organizations. In this #GRCChat recap, participants look back at 2014 to discuss their top IT GRC regrets.

Emily McLaughlin asks:

What governance challenges are created by new information-related compliance and risk management needs?

Join the Discussion

SearchCIO

Don't let edge computing security concerns derail your plans

Security concerns give many IT organizations pause when considering edge computing. But the potential problems can be overcome ...

Risk-based digital identity benefits CIOs, CMOs and customers

Asking customers to reaffirm their digital identities by sharing private information undermines CX and data security. Instead, ...

Agile practices endure and continue to adapt

As the 20th anniversary of the Agile Manifesto approaches, Agile practices remain vital to software development and are being ...

SearchHealthIT

Digital transformation projects are an opportunity for healthcare CIOs

Geisinger Health System CIO John Kravitz gives advice on how healthcare CIOs can lead a digital transformation project within ...

Cloud-based security enables healthcare orgs to grow with the times

Cleveland Clinic's deputy CISO came to the 2019 CHIME Fall CIO Forum with a message: Migrating to the cloud won't be easy, but ...

3 health IT leaders on takeaways from 2019 CHIME Fall CIO Forum

Healthcare CIOs said the struggle between innovation and keeping the lights on and developing tools for patient data were top of ...

SearchCloudComputing

A primer on Alibaba Cloud for Western enterprises

When Western cloud users think of major cloud providers, it's typically the top three: AWS, Google Cloud Platform and Microsoft ...

AWS, Azure and Google peppered with outages in same week

Cloud outages hit AWS, Microsoft Azure and Google Cloud within the past week, an outcome that suggests customers must take a more...

Google to unveil post-Chronicle cloud cybersecurity plans

Google plans to discuss its cloud cybersecurity portfolio at a conference next week, with the capabilities developed by Chronicle...

SearchDataCenter

Microsoft quantum development turns toward hardware

Microsoft revealed plans to jump into the quantum hardware business with a chip capable of running quantum software.

Top 5 options for Linux certifications

Are you ready to expand your Linux knowledge? Here's a look at the latest courses, training content and exams available from ...

New hardware, use cases shape server benchmarking needs

Advancements in server hardware help admins address the latest data-intensive use cases. But this brings questions about the ...

SearchDataManagement

How AI could save the enterprise data catalog

Enterprise data catalogs record all the databases and files in a corporation, but sometimes it can become out of date. Advances ...

With Vitess 4.0, database vendor matures cloud-native platform

Scaling a MySQL database in the cloud is not easy, but the open source Vitess project manages the project at scale for ...

Managing unstructured data is crucial to enterprises' AI goals

Unstructured data makes up a huge portion of most businesses' data volume. But, with data-hungry AI systems coming online, making...

SearchSecurity

Check Point: Qualcomm TrustZone flaws could be 'game over'

Researchers discovered vulnerabilities in Qualcomm TrustZone that Check Point says could lead to 'unprecedented access' because ...

InfoTrax settles FTC complaint, will implement infosec program

InfoTrax settled an FTC complaint over an extensive data breach that lasted two years. Now, it can no longer collect any personal...

Microsoft to apply CCPA protections to all US customers

Microsoft said it will apply the California Consumer Privacy Act across the nation and extend the law's data privacy protections ...

Join the conversation

5 comments

Send me notifications when other members comment.

Oldest

[-]

Emily McLaughlin - 21 Apr 2014 1:23 PM

What governance challenges are created by new information-related compliance and risk management needs?

Raghavanselvamani - 30 Apr 2014 2:23 PM

The biggest challenge is the life cycle management of information and associated data retention policy for the organisation that meet the regulatory compliance at different geographical locations across the globe where at many, there is unclear or absense of the regulation.

DGrahamRKI - 26 May 2014 8:52 PM

Proper analysis of current sources, their validity and retention requirements is needed as a baseline, accompanied by appropriate policies and practices to keep items only for as long as needed and to be sure that multiple copies of documents etc are not sitting in other places in the organisation (uncontrolled)

Emily McLaughlin - 27 May 2014 11:44 AM

"Regulatory compliance at different geographical locations across the globe" -- This came up in a discussion at MIT Sloan CIO Symposium last week, Raghavanselvamani.

DGrahamRKI, totally agree.

Genderhayes - 28 May 2014 4:26 AM

Identifying document assess financial impacts track and follow up on issues management dashboards

Revamp your information lifecycle management strategy for endless data