Compliance Software » management

FISMA capstone document released by NIST — Government Computer News

compliancesoftware — Fri, 17 Dec 2010 00:00:54 +0000

The National Institute of Standards and Technology has released a draft of its guidelines for implementing enterprisewide information risk management. The document defines the underlying principles for implementing the Federal Information Security Management Act. via FISMA capstone document released by …

In 2011 The GRC Market Will Grow 20%, Driven More By Breadth Than Maturity | Forrester Blogs

compliancesoftware — Mon, 13 Dec 2010 01:17:31 +0000

On the heels of Forrester’s GRC Market Overview last month, this week we published my Governance, Risk, And Compliance Predictions: 2011 And Beyond report. Based on our research with GRC vendors, buyers, and users, this paper highlights the aggressive regulatory …

Google wins email, apps contract with U.S. GSA | ZDNet

compliancesoftware — Thu, 02 Dec 2010 13:25:02 +0000

Over the summer, the company launched Google Apps for Government and announced that it had received FISMA (Federal Information Security Management Act) certification, which allowed it to store sensitive, yet unclassified, information, which makes up about 80 percent of all …

#PCI Compliance Changes Promote Log Management – Security from eWeek

compliancesoftware — Thu, 28 Oct 2010 19:21:38 +0000

The key revisions cover areas such as log management and scoping the environment to understand where cardholders reside. There were also revisions meant to enable organizations to develop a risk-based assessment approach based on their specific business circumstances as well as …

E-crime Now More Common Than Real Crime

compliancesoftware — Thu, 21 Oct 2010 01:14:19 +0000

If there was any doubt about the popularity of electronic dupery, it should be put to rest with a report on global fraud released the week by the risk management consulting firm Kroll. For the first time since 2007, when …

Government Ready For Cybersecurity Deadline

compliancesoftware — Wed, 20 Oct 2010 01:27:58 +0000

CyberScope represents a major shift in the way federal agencies report their compliance with the Federal Information Security Management Act, the law governing government cybersecurity. The goal, officials have repeatedly said since announcing the tool late last year, is to …

Enterprise risk management: Get started in six steps

compliancesoftware — Wed, 08 Sep 2010 21:17:22 +0000

I propose that ERM is worth doing and doesn’t have to be so complex if you simply “begin with the end in mind,” as Stephen Covey says in The 7 Habits of Highly Successful Security Leaders. Or would have said …

Visa Provides Guidance on Secure Implementation and Management of Payment Applications — SAN FRANCISCO, Aug. 24 /PRNewswire/ –

compliancesoftware — Wed, 25 Aug 2010 02:04:10 +0000

Visa today announced global industry best practices for payment application vendors, integrators and resellers that implement, install or manage payment-related systems on behalf of merchants. The best practices developed by Visa in collaboration with the SANS Institute are designed to …

Google Apps gets FISMA-certified for government work

compliancesoftware — Mon, 23 Aug 2010 17:54:18 +0000

Google has landed an important federal certification for encryption and security. An official Google blog post said that the company has received Federal Information Security Management Act (FISMA) certification and accreditation from the U.S. government for its Google Apps office …

13 essential steps to integrating control frameworks – CSO Online

compliancesoftware — Tue, 13 Jul 2010 21:17:37 +0000

# The organization must understand which frameworks or framework elements are needed to address, at a minimum, the critical security concerns. When addressing control requirements, more is not necessarily better, and each additional control entity represents an investment in time, …