| Title | Date Added | Company | |
|---|---|---|---|
 |
Governance, Risk, and Compliance: A Practical Guide to Points of Entry | 2008-03-01 | Sun Microsystems |
| The implementation of new initiatives in Governance, Risk, and Compliance (GRC) may be an overwhelming prospect for many organizations. With multiple views and aspects of GRC, it can be difficult to know where to begin. This paper proposes that the solution is to break GRC initiatives into a number of constituent components that can be addressed one at a time, beginning with those that are easiest to plan for and implement. Choosing the first area on which to focus may mean drilling down from the big picture of enterprise GRC to the IT framework that enables it, and then to some manageable aspect of that framework. | |||
 |
A New and Flexible Approach to Security Management Using a Combination of People, Processes and Technology | 2008-02-05 | Symantec |
| Businesses today don't operate in a "One-size-fits-all" world. Instead, they require tailored products and services that enable them to mitigate risk, help demonstrate compliance, and improve security operational efficiency. Regulatory compliance is a worldwide issue that requires accurate oversight. Internal threats are also an issue as authorized account holders (e.g., employees, customers, partners, and suppliers) engage in behavior that ranges from mischievous to malicious." Addressing these security risks requires a new and flexible approach; one that IDC has begun calling a security "Hybrid." This hybrid approach comprises three major security components: products (hardware and software), managed services, and professional services.
Tags: Security Management, Best Practices |
|||
|
ICD-10: Turning Regulatory Compliance Into Strategic Advantage - Are U.S. Health Plans and Providers Ready for ICD-10 Adoption? | 2008-02-04 | Deloitte LLP |
| As if existing IT investments weren't a large enough strain on provider and payor budgets, the U.S. health care industry is facing a new challenge: ICD-10 (International Statistical Classification of Diseases and Related Health Problems, Version 10) implementation. In 2011, per the mandate of Senate Bill 628, the United States will move from the ICD-9 system of disease classification to ICD-10, a much more complex system that reflects recent advances in disease detection and treatment via biomedical informatics, genetic research and international data-sharing. U.S. ICD-10 adoption has the potential to revolutionize the nation's health care system and produce a huge wave of IT spending. However, the process will require a massive overhaul of the nation's medical coding system. In fact, some industry observers say that ICD-10 could overtake Y2K in terms of impact and cost. ICD-10: Turning Regulatory Compliance into Strategic Advantage, a new paper from the Deloitte Center for Health Solutions, part of Deloitte LLP, describes the impact of the proposed move to ICD-10 on U.S. health plans and providers and discusses the need to prepare for this change now. Specifically, it looks at the potential impacts of ICD-10 compliance on three camps of health care organizations: Pragmatists, Collaborators, and Innovators.
Tags: HIPAA |
|||
|
Benchmarking IT Risk and Compliance | 2008-01-31 | Symantec |
| IT Risk and Compliance are critical issues for Senior IT Managers today. Two areas of focus will be presented beginning with the results of Symantec's IT Risk Management Report. This webcast addresses persistent myths about IT Risk and suggests ways to dispel each. The presenter will cover research conducted by the IT Policy Compliance Group, a joint research initiative between Symantec, ISACA, CSI and others. This research delves deeper into the intimate relationship between compliance and risk. Included are best practices extracted from industry research and survey respondents.
Tags: Cost Control - Risk Mgmt., Best Practices |
|||
|
Microsoft FDCC Webcast Series: Do It Right: Log in as Normal User | 2008-01-30 | Microsoft |
| FDCC requires that the typical user run as Normal User whenever possible; without this, a managed environment is practically impossible. For organizations that have given Local Administrator rights to their users all along, this is a serious change in policy, and one that often alarms Users, Developers, and even Administrators. This webcast provides information on how to propose and implement the switch to performing daily tasks logged in with User, not Administrator rights. It will cover what running as User means in Vista and XP, typical impacts, Necessary preparations and educational moves to make, Special cases for Developers, Power Users, and Administrators and Real world cases and examples of how they handled it.
Tags: Security Management |
|||
|
Pragma Systems: Using SSH for PCI Compliance | 2008-01-18 | Pragma Systems |
| The objective of this paper is to examine the federal and industry regulatory environment and to analyze the benefits of utilizing Secure Shell (SSH) in achieving PCI compliance. In addition, to review the role Pragma Systems, Inc. and its FortressSSH product can play in a robust, secure computing environment. In the wake of the first Sept. 30, 2007, Payment Card Industry (PCI) deadline for locking down networks and customer data, it's clear many companies - and more than half of smaller organizations - still fall short of prescribed security standards. As a result, the majority of Telnet-dependent companies are now scrambling to find cost-effective solutions for effecting full compliance with PCI Data Security Standards (PCI DSS).
Tags: Security Management |
|||
|
Improving Compliance and Efficiency With Sun Identity Auditing and Other Sun Identity Management Capabilities | 2008-01-01 | Sun Microsystems |
| Faced with increasing compliance requirements and related challenges since the passage of the Sarbanes-Oxley Act of 2002 and other regulations governing data integrity and privacy, Sun and its alliance partner Deloitte & Touche LLP (Deloitte & Touche) deployed Sun Java System Identity Manager and Java System Identity Auditor software to improve Sun's processes related to user account management and access controls and to achieve operational efficiencies. This paper recounts the process from solution criteria and selection through planning and deployment, and describes the benefits that have resulted for both Sun and its customers.
Tags: Security Management |
|||
|
Microsoft Security Solutions: Partner Pathway to Business Performance | 2008-01-01 | IDG (International Data Group) |
| Information Technology (IT) is penetrating more and more aspects of both business life and personal life. Expanded IT is resulting in a need for broader and more comprehensive security solutions, which in turn is impacting the overall economics of IT solution providers. Growth markets such as small to midsize enterprises are demanding simple, easy-to-use, and affordable products, leading to higher volumes but thinner margins. Security solution providers therefore are taking a comprehensive view of business performance, including business velocity, cost management, operational excellence, and bottom-line profitability. As an important vendor of security products, including the Forefront line of business security products, Microsoft recognizes the significance to its partners of continuing to make money in this changing industry.
Tags: Security Management |
|||
|
How Information Governance and Compliance Pay | 2007-12-11 | Symantec |
| Does compliance really pay or is it just a financial drain with no payback? Effective risk, governance and compliance programs pay big financial dividends, many times over. This webcast, based on a research conducted by the IT Policy Compliance Group, focuses on fact-based insight into how improving information governance, risk and compliance, reduces costs, financial risk and the loss of sensitive data.
Tags: Data Recovery - Security, Cost Control - Risk Mgmt. |
|||
|
PCI Policy Compliance Using Information Security Policies Made Easy | 2007-12-10 | Information Shield |
| Many organizations are building or updating written information security policies in response to the newly updated Payment Card Industry Data Security Standard (PCI-DSS). Written information security policies are fundamental to an effective information security program and required for compliance with many frameworks and regulations, including PCI, HIPAA, COBIT and many others. This paper describes how Information Shield security policy products can be used to save time and money and enable compliance with the PCI standard.
Tags: Security Management, Data Recovery - Security |
What's important from our sponsors
Business
Intelligence Summit
Learn how to
connect everyone
connect everyone
in your organisation with trusted and essential information
Presented by
Cutting-edge technology from premium sponsors
HP Simply StorageWorks D2D Backup System
Explore this disk-to-disk backup system that is fully automated and provides reliable data protection for your business.
Business Technology Power Center
Learn about how HP and Intel can help you do more with less.
Oracle Accelerate
Unlimited Possibilities for Limited Budgets.
APAC Data Center City, by Cisco
Blogs, Resources & Events. Take a tour and win US$3000!
Compare your IT salary
Sign-up for free download of IT salary benchmark report 2008.
Industry Watch: Manufacturing for Retail
Learn how the right information puts manufacturers ahead of the competition.
- ZDNet.com |
- ZDNet Japan |
- ZDNet.de |
- CNET UK |
- CNET.de |
- Tech Republic |
- BNET |
- MP3.com |
- activeTechPros |
- ZDNet UK |
- ZDNet Korea |
- ZDNet France |
- CNET Australia |
- CNET France |
- Download.com |
- Builder |
- GameSpot
- ZDNet Australia |
- ZDNet Taiwan |
- CNET |
- CNET Taiwan |
- News.com |
- Silicon.com |
- TV.com |
- GameSpot Korea
News |
Insight |
Reviews |
TechGuides |
Jobs |
Blogs |
Videos |
Community |
Downloads |
IT Library |
Copyright © 2008 CNET Networks, Inc. All rights reserved. Privacy Policy.
