regulatory » Compliance Software

New proposed regulations in the US #Compliance #GRC

Posted by compliancesoftware on June 26, 2009 | Comments (0) | Trackbacks (0)

New legislation continues to pass at a fast clip in the US under the new administration, some of the most revealing actions taken so far include:

May 20, 2009 – President Obama signed the Fraud Enforcement and Recovery Act of 2009.
June 12, 2009 – United States Congressman Gary Peters introduced his Shareholder Empowerment Act to the [...]

Tags: compliance, grc, regulation, regulatory, risk, security, state
Categories: GRC, Other Regulations

SAS 70 audits and PCI DSS: Four critical keys for cost-effective compliance

Posted by compliancesoftware on May 20, 2009 | Comments (0) | Trackbacks (0)

SAS 70 audits and PCI DSS assessments are fast becoming two of the most widely recognized and “must have” compliance initiatives for many businesses in today’s growing regulatory environment. Sarbanes Oxley, HIPAA, and other federally mandated legislative acts have pushed Statement on Auditing Standards No. 70 (SAS 70) into the forefront of compliance. Similarly, the [...]

Tags: card, compliance, industry, manager, payment, payment card industry, PCI, regulatory, security, state
Categories: PCI

Unseen communications violate PCI DSS compliance | OUT-LAW.COM

Posted by compliancesoftware on January 9, 2009 | Comments (0) | Trackbacks (0)

One of the key requirements for compliance with PCI DSS (the Payment Card Industry Data Security Standard) is that organisations block all non-approved channels of communication, screen all traffic and prohibit direct routes for inbound and outbound internet traffic. The trouble is many organisations forget about the communication traffic they cannot see, ones that use [...]

Tags: card, compliance, discover, industry, management, pan, payment, payment card industry, PCI, regulatory, risk, security, software
Categories: PCI

International Challenges in PCI Security | ITworld

Posted by compliancesoftware on December 15, 2008 | Comments (0) | Trackbacks (0)

December 9, 2008, 01:01 PM — CSO —

In a country that’s seen many regulatory compliance challenges this decade, the headaches of PCI security tend to be analyzed from a largely American perspective.
In the process, companies tend to forget that PCI compliance has been a recipe for international indigestion.
“Remember that credit cards are used abroad, [...]

Tags: announce, card, compliance, iso, pan, PCI, regulatory, risk, security, software, state, visa
Categories: PCI

How to Maximize Your IT Security Budget

Posted by compliancesoftware on December 11, 2008 | Comments (0) | Trackbacks (0)

Sophisticated cyber criminals have followed businesses into the online world; they now can steal everything from intellectual property to credit cards en masse. And that’s just the start Add social security numbers, addresses, and other personally identifying information to the list and you can essentially reconstruct and hijack entire identities. What’s worse is that cybercriminals [...]

Tags: breach, card, certification, compliance, GLBA, government, industry, iso, laws, pan, payment, payment card industry, PCI, privacy, regulation, regulatory, security, state
Categories: Data Security, GLBA, HIPAA, PCI, SOX

The Forrester Blog For Security & Risk Professionals

Posted by compliancesoftware on December 9, 2008 | Comments (0) | Trackbacks (0)

Thomson Reuters Gets A Jump On Holiday Shopping, Acquires Paisley

Keep an eye out in the next week for Forrester’s GRC Trends 2009 report, which will take a look at how a decidedly rocky end of 2008 will impact those responsible for various aspects of corporate governance, risk management, compliance, audit, and finance… as well as [...]

Tags: compliance, governance, grc, management, pan, regulatory, risk, risk management, security, software
Categories: GRC

CISOs ponder new FISMA requirements

Posted by compliancesoftware on December 9, 2008 | Comments (0) | Trackbacks (0)

A bill that would amend the Federal Information Security Management Act (FISMA) could pass during the next session of Congress, and chief information security officers are wondering what more FISMA requirements might mean for them.
Legislation to amend the current FISMA requirements cleared the Senate Homeland Security and Governmental Affairs Committee earlier this year.
The bill would [...]

Tags: compliance, FISMA, government, iso, management, pan, regulatory, security
Categories: FISMA

NextGov.com – Melding Security

Posted by compliancesoftware on December 1, 2008 | Comments (0) | Trackbacks (0)

With computers now controlling critical assets, it’s more important than ever for cyber and physical security managers to work together.
Comment on this article in The Forum.Linda Wilbanks can’t fire a gun, but as chief information officer at the Energy Department’s National Nuclear Security Administration, she’s working with executives to ensure nuclear materials don’t fall into [...]

Tags: FISMA, governance, government, iso, management, manager, pan, regulatory, risk, security
Categories: FISMA

IT Management Building an IT Governance Foundation – Baseline

Posted by compliancesoftware on November 26, 2008 | Comments (0) | Trackbacks (0)

While organizations have similar goals such as controlling costs and achieving data consistency, IT departments across government, corporations and nonprofits operate differently. IT management needs an overarching governance model like CobiT, ITIL, CMM and Six Sigma to ensure that investments in technology generate business value and mitigate risks.
Information technology governance defines the overall structure, policies, [...]

Tags: 27001, card, compliance, dashboard, governance, government, iso, management, manager, pan, regulatory, risk, risk management, security, software, state
Categories: GRC

International Challenges in PCI Security

Posted by compliancesoftware on November 21, 2008 | Comments (0) | Trackbacks (0)

Tags: announce, card, compliance, iso, pan, PCI, regulatory, risk, security, state, visa
Categories: PCI