IT Compliance and Controls

Converging Business, Information, and Controls

IT Compliance and Controls header image 4

Entries from February 2009

Data Security and Privacy in a Downturn with 3rd Party Providers

February 27th, 2009 · 1 Comment

Recently I contributed to a CIO Magazine and Network World piece on what is the impact to – Security and Privacy – in a downturn.  Specifically, what happens to all that sensitive data that was once locked behind doors and large security systems when the lights go out and the auction gavel hits the block?  […]

[Read more →]

Tags: Uncategorized

Positive Book Review

February 20th, 2009 · No Comments

A new book review has been placed online by MSI.  A nice overview and elaboration of the book content. A nice highlight: “DeLuccia lays a foundation by examining the importance of internal IT controls…explains why silo IT strategy wastes time and resources, offering a better solution in having an IT enterprise control environment” Comments and […]

[Read more →]

Tags: Uncategorized

Cloud Computing and the Atlanta MIT Forum

February 13th, 2009 · 1 Comment

Last night I attended the Atlanta MIT Forum discussion focused on Cloud Computing, Grid Computing, and the challenges of organizations operating within this platform and environment.  The discussion was broadcast live over GPB around the world, and no matter how many times I attend live shows – it is always exciting to be ‘in the […]

[Read more →]

Tags: Uncategorized

Recommended Security Controls – Info Security, 800-53 Feedback Requested

February 6th, 2009 · No Comments

NIST 800-53 Public Draft is out for review and your feedback!  I strongly encourage everyone to review the Controls provide industry guidance to ensure this landmark guidance document remains relevant and sufficient to the threats that exist. “The specific changes in Special Publication 800-53, Revision 3 include: Restructuring of security controls to include specific requirements […]

[Read more →]

Tags: Uncategorized