compliance News

  • SAP takes on IBM, Oracle with new GRC suite

    Posted March 23, 2011 - 9:16 am

    SAP is hoping to cement its foothold in the growing market for GRC (governance, risk and compliance) software with a new suite, announced Wednesday, that is nearly three years in the making.
  • Dos and don'ts for IT GRC success

    Posted March 7, 2011 - 9:47 pm

    DO agree on an IT-GRC implementation strategy. Moving disjointed, manual processes into an automated, centralized tool is an enormous undertaking. While a giant boa constrictor can unhinge its jaw and swallow a large mammal whole, that strategy is not advisable for your enterprise.
  • IT GRC tools: Control your environment

    Posted March 7, 2011 - 9:45 pm

    As enterprises approach a high level of maturity in their IT governance, risk and compliance (GRC) programs, they face a conundrum: How can they effectively implement and manage policies and their supporting controls to maintain a strong risk posture? To add to the difficulty, the environments they manage are often widely distributed and subject to multiple regulatory requirements and internal audit requirements, and must adapt to changing business needs. GRC tools are designed to help.
  • eGRC vs. IT GRC

    Posted March 7, 2011 - 9:43 pm

    Most analysts break the market down into two broad categories: IT GRC and Enterprise GRC (eGRC). The vendors generally don't make it any easier for potential enterprise customers, as the IT GRC players often claim they do eGRC, and all the eGRC vendors saying they encompass IT as well.
  • Merck moves to improve system security and compliance

    Posted January 31, 2011 - 12:39 pm

    Pharmaceutical and chemical giant Merck is improving compliance and simplifying security with new systems from CA Technologies.
  • Cost of regulatory security compliance? On average, $3.5M

    Posted January 31, 2011 - 10:56 am

    The cost of achieving regulatory security compliance is on average $3.5 million each year, according to a survey of 160 individuals leading the IT, privacy and audit efforts at 46 multinational organizations.
  • How Botox battles compliance wrinkles

    Posted January 28, 2011 - 11:33 am

    A BPM overhaul saved the day after legal issues complicated compliance at Botox-maker Allergan.
  • Cisco acquires Pari: What goes around, comes around

    Posted January 26, 2011 - 1:48 pm

    Cisco this week announced its intent to acquire privately-held Pari Networks, a provider of network configuration, change and compliance management appliances that was founded by former Cisco engineers.
  • Expert: WikiLeaks complicates compliance

    Posted January 26, 2011 - 12:25 pm

    SenSage CEO Joe Gottlieb explains how WikiLeaks was just the beginning of a larger challenge to come, in terms of compliance efforts and a future full of WikiLeaks-inspired content leakers.
  • IBM scoops up information governance vendor PSS Systems

    Posted October 13, 2010 - 4:16 pm

    IBM on Wednesday announced it has acquired PSS Systems, a privately held company whose software is designed to help large organizations manage electronic documents required to meet legal obligations. Financial terms of the deal were not disclosed. PSS Systems was founded in 2004 and is based in Mountain View, Calif.
  • IBM bolsters business analytics unit with purchase of OpenPages

    Posted September 15, 2010 - 11:27 am

    Aiming to expand its business analytics capabilities to support compliance and risk management processes, IBM today announced it is purchasing Waltham, MA-based software vendor OpenPages. Terms of the deal for the privately held company were not disclosed. Naturally, the acquisition is contingent upon regulatory approval.
  • Supreme Court's SOX decision may be non-event for IT

    Posted June 29, 2010 - 9:20 am

    Monday's Supreme Court decision on a lawsuit challenging the Sarbanes-Oxley Act financial regulations is unlikely to cause IT managers to change current strategies for complying with the law.
  • Where is Your Cloud? Four Compliance Best Practices

    Posted April 15, 2010 - 3:27 pm

    If you think the phrase "It's in the cloud" means that your data resides on the Internet and is thus accessible everywhere equally, think again. Most infrastructure-as-a-service (IaaS) cloud services share the same residence model as traditional hosting and outsourcing deployments -- they live in specific data centers in specific geographies. This means that customer data is generated and most likely stored in this physical location, giving it legal and privacy implications.
  • Average annual cost of PCI compliance audit? $225k

    Posted March 1, 2010 - 12:52 pm

    Merchants that undergo network audits to ensure compliance with the Payment Card Industry Data Security Standards are paying an average of $225,000 each year.
  • Five Security Missteps Made in the Name of Compliance

    Posted February 23, 2010 - 2:41 pm

    In the hurry to meet a regulatory compliance deadline, companies risk making some costly security mistakes. Here are five examples.
  • Managing software legal compliance

    Posted February 22, 2010 - 9:53 pm

    In the age of open source and large-scale outsourcing, ascertaining the legal compliance of software is just as important as assuring the quality before pressing it into production. Numerous legal cases have highlighted the business risks and enormous costs incurred when compliance is not done properly -- costs stemming from judicial procedures, recalls, fixing issues post-release and missed market opportunities.
  • Novell, SAP bring together security, compliance wares

    Posted October 17, 2009 - 10:13 pm

    Novell is integrating its security and identity software with governance, risk and compliance wares from SAP.
  • Microsoft charges Europeans double for Windows 7

    Posted June 28, 2009 - 7:34 pm

    Prices new OS at 41% to 100% more than in the U.S., but leaves out browser
  • PCI DSS and storage of credit card data

    Posted June 23, 2009 - 5:06 pm

    The PCI (Payment Card Industry) Data Security Standard is all-encompassing, setting a standard for security and protective measures for merchants who store credit card information. Created by the credit card industry, the standard sets forth a set of core standards. From a security perspective, the standards are basic best practices.
  • CA unveils Compliance Manager for z/OS for mainframe policy control

    Posted May 20, 2009 - 11:07 am

    CA Wednesday unveiled Compliance Manager for z/OS, software that works in tandem with any of three mainframe access-control products -- CA's Access Control Facility or Top Secret plus IBM's Resource Control Access Control Facility -- to boost real-time monitoring and policy control on data.
  • Compliance, backup, and recovery

    Posted May 15, 2009 - 4:07 pm

    Compliance with the ever-increasing array of legislative mandates presents a burden to management and IT staff alike. If you’re in financial services, you are bound by Gramm-Leach-Bliley; in health care, by HIPAA; or if you’re a publicly-held corporation, Sarbanes-Oxley. If you process credit card payments, there are PCI-DSS rules to consider.
  • Symantec sees slowdown in security sales

    Posted May 6, 2009 - 8:07 pm

    Symantec reports a $249 million loss, saying customers are moving away from multiyear licenses.
  • Microsoft, Infosys focus on supply chain

    Posted January 29, 2009 - 6:01 pm

    Microsoft and IT services provider Infosys Technologies revealed on Thursday an alliance around improving supply chain visibility and collaboration.
  • E-discovery vendor revamps pricing model

    Posted January 21, 2009 - 5:44 pm

    E-discovery vendor Kazeon announced a range of new pricing models this week, including a usage-based license.
  • Novell, Sun, Oracle crank out identity and access wares

    Posted October 21, 2008 - 2:52 pm

    Novell, Sun and Oracle Monday have announced updates to their identity-management platforms that focus on monitoring access controls and strengthening authentication.
Join us:






Join today!

See more content
Ask a Question