Exploring Effective Compliance Management Solutions
At this month’s ISACA e-Symposium, you will learn how to improve information security and compliance initiatives within your enterprise. Our speakers will discuss how you can best manage the technology burdens of governance and compliance regulations, and how to use emerging technology to mitigate risk and achieve continuous compliance. They will share their tips and best practices on how to take advantage of IT resources, and will be available to answer your questions throughout the event. Please join us on Tuesday, 28 September 2010 for this interactive, live event! Please make sure you have the latest version of Flash installed. Make sure you click the 'confirm attendance' button once you have registered or logged in on the ISACA e-Symposium site.
Organizations are very concerned with implementing programs for compliance with various regulatory and internal requirements. These programs typically include a formalized step-by-step process and supporting technologies. What organizations need to realize is that integration is the key to success. Often times, there are different pockets of activity in motion throughout the organization and are managed in isolation with inadequate involvement from the business and no real linkage to the overall compliance picture or organizational objectives. The result is inappropriate decision making around compliance and wasteful utilization of resources with focus in many different areas. What organizations don’t realize is that if they were to internally unify and coordinate their efforts, a solution can put into place that would meet the needs of a much wider population of stakeholders.
For all who were clinging to the hope that compliance would somehow equal security, the 2010 Verizon Business Data Breach Report was probably a very painful read. It found that 21% of companies breached were found to have been validated as compliant with PCI DSS. What's more, 86% of the victims had evidence of the breach in their log files. With millions, even billions of log events across your IT infrastructure each day, it's impossible to manually thwart cyber attacks where they live and grow before they compromise sensitive data. Clearly, the evidence is there. In this webcast, learn how you can effectively wade through this data deluge, find threats in minutes instead of months and combat cyber threats in a way that makes your organization more secure and in a continuous state of compliance.
How do organizations breathe fresh air into existing IT compliance programs? In uncovering the symptoms (and perils) of checkbox compliance, opportunities exist to harness existing IT controls to navigate risks and leverage in other parts of the enterprise. This session looks at the lifecycle of compliance management and examines possible barriers to change as well as practical ways to drive program maturity and sustainability.