CIO.com - Regulatory Compliance

Security Experts Ask House for Light Regulatory Touch

Thu, 09 Feb 2012 05:00:00 GMT

Technology industry representatives -- looking to prevent an additional set of compliance requirements -- urge House subcommittee to avoid new cybersecurity regulations to shore up the nation's digital defenses.

Cybersecurity Report Stresses Need for Cooperation

Mon, 30 Jan 2012 05:00:00 GMT

A lack of honest information-sharing between public and private sectors and among nations hampers cyber defenses, warns a new report by McAfee and the Brussels-based Security and Defense Agenda.

FTC Commissioner Talks Online Privacy, Puts Data Brokers on Notice

Thu, 26 Jan 2012 05:00:00 GMT

On the heels of high-profile settlements with Google and Facebook, the Federal Trade Commission's Julie Brill signals that lower-profile members of data economy can expect heightened scrutiny.

Nation's Nuclear Power Watchdog Comes Up Short on FISMA Compliance

Tue, 20 Dec 2011 05:00:00 GMT

Majority of compliance gaps surround configuration and vulnerability management, an independent audit finds. But NRC has made important strides, too.

Cloud Computing: 4 Tips for Regulatory Compliance

Mon, 08 Aug 2011 04:00:00 GMT

Cloud computing makes it harder for enterprises to be sure they're complying with industry and government regulations. IT and legal experts offer CIOs advice on how to stay in compliance even when their applications reside in the cloud.

The Latest Security Tool for Your Arsenal: Whitelisting

Thu, 07 Jul 2011 04:00:00 GMT

Attacks at RSA, Sony and others point to the need to get tough with what you allow on your network. Whitelisting requires more maintenance from IT, but it is the best way to fortify your network and protect your data.

Putting a Finger on Compliance Control

Mon, 13 Jun 2011 04:00:00 GMT

Last year, administrators in the City of Winter Park, Fla., realized they had a serious compliance risk in their police department. The FBI's Criminal Justice Information Services Division has regulations that call for tight access controls for records. However, many officers share workstations and, therefore, also share passwords. The solution, they realized, was to deploy fingerprint scanners that would enable individual authentication.

E-discovery: How a Law Firm Slashes Time and Costs

Tue, 15 Feb 2011 05:00:00 GMT

Today's data explosion makes many IT leaders worry about storage costs, but e-discovery costs associated with lawsuits that require sifting through all that data can be equally nasty. Here's how one Boston law firm attacks the problem.

How Botox Battles Compliance Wrinkles

Tue, 14 Dec 2010 05:00:00 GMT

A BPM overhaul saved the day after legal issues complicated compliance at Botox-maker Allergan.

PCI Compliance: Five Things You Need to Know

Thu, 13 May 2010 04:00:00 GMT

As a good QSA will tell you, such security standards are meant to be a baseline. Good organizations go beyond cramming for annual PCI reviews.

Startup Offers EMC Centera Ddata Migration Services

Tue, 16 Mar 2010 04:00:00 GMT

A Cambridge, Mass.-based startup is offering a new data migration service that allows companies to move archived data off EMC Corp.'s Centera write-once, read many (WORM) arrays on to any other network-attached disk drive.

EMC, Intel, VMware Team to Secure Private Clouds

Mon, 01 Mar 2010 05:00:00 GMT

EMC, Intel and VMware are teaming up to improve security and regulatory compliance in cloud computing with a proof of concept to be demonstrated at this week's RSA Conference in San Francisco.

Enterprises Look for Help Managing Security Logs

Thu, 21 Jan 2010 05:00:00 GMT

Managed SIM services started to gain momentum over the past two years, largely due to compliance mandates such as the Payment Card Industry data security requirements.

Compliance As Security: the Root of Insanity

Tue, 08 Dec 2009 05:00:00 GMT

BT's Jason Stradley on how companies lose their way by confusing a completed compliance checklist with ironclad security.

Will U.S. Supreme Court Overhaul Sarbanes-Oxley?

Mon, 07 Dec 2009 05:00:00 GMT

The U.S. Supreme Court will hear arguments for and against the legitimacy of the Public Company Oversight Board, an independent group established by the Security and Exchange Commission to servers as the auditing industry's watchdog over financial practice and corporate governance.