The future of compliance policy management
Compliance is not just “one thing” for businesses anymore. Compliance has become a broad subject like “finance” or “security,” with many sub-topics underneath that umbrella. The best strategy for the...
View ArticleKodak CISO on meeting today’s compliance challenges
In this IT Compliance Advisor podcast from SearchCompliance.com, associate editor Alexander B. Howard interviews Bruce Jones, chief information security officer (CISO) at Eastman Kodak Co. Over the...
View ArticlePodcast: HITECH Act adds new compliance requirements, penalties
The Health Information Technology for Economic and Clinical Health (HITECH) Act, sometimes referred to as “HIPAA2,” introduces new compliance requirements, penalties and incentives for the adoption of...
View ArticlePodcast: OWASP’s Hess on security and compliance in the cloud
Today’s episode features an interview with Georg Hess about Web application security and compliance in the cloud. Hess is the founder of application security provider Art of Defence and current German...
View ArticleZero liability limits legal recourse for PCI data breach violations
The recent dismissal of lawsuits against retailer Hannaford raises questions about what recourse consumers have if they are victims of a credit card data breach. In this Compliance Advisor podcast,...
View ArticleDon’t forget business model risk in your risk management strategy
The MIT Sloan CIO Symposium on May 20 in Cambridge, Mass., featured several panels on the top issues affecting CIOs. But one panel on governance, risk and compliance afterwards produced the most...
View ArticleUnleashing the potential of sustainable business practices
President Obama met with business leaders on July 2 to discuss not only how businesses can reduce their carbon footprint and energy consumption, but also how these efforts can be of benefit to the...
View ArticleFreerisk financial risk modeling services challenge S&P, Moody’s
In the wake of the financial meltdown trigged by the subprime mortgage crisis in the fall of 2008, credit ratings agencies like Moody’s and Standard and Poor’s became the focus for some of the blame....
View ArticleCloud computing data security creates challenges for compliance officers
Cloud computing is just another form of outsourcing, and like outsourcing, it comes with its own set of risks and compliance challenges. As the data center begins to disappear into the cloud, data...
View ArticleAnton Chuvakin on PCI DSS compliance, security and nonprofits
When it comes to meeting the requirements of the Payment Card Industry Data Security Standard (PCI DSS), the mantra of the moment is compliance, not security. Anton Chuvakin, a well-known expert on PCI...
View Article