IT Compliance and Controls
Converging Business, Information, and Controls
-
Categories
- Access and Authorization
- Application Controls
- Change Control
- Direcitonal Alignment
- Fraud
- FTC
- GLBA
- Human Resources
- Identity Theft
- Incident Response Capability
- iso27001
- Life Cycle Management
- Logical Access
- Monitoring and Performance Reviews
- Operations Resiliency
- Oyster
- PCI
- Physical Access
- Policy and Procedures
- Risk Awareness
- SDLC
- Security and Assurance
- Sustain Operations
- Technology Intelligence
- Technology Strategy Orchestration
- Tone at the Top
- Trusted Communications and Network
- Trusted Computing Platform Systems
- Uncategorized
-
Archives
-
Admin
-
My Book:
Payment Card Industry (PCI DSS) Controls Explained-
Speeches & Publications:
Quoted in 5 IT essentials: A recession-proof priority list - IT World by Amy Bennett
Quoted in How Anonymous Do Businesses Need? - IT Business Edge, article by Lora Bentley. Checkout my expanded response here
Contributed and Quoted in Cheap IT Security? The Tools were there all along - CSO Online, article by Bill Brenner
Invited to speak at the "CSO Executive Seminar Series on PCI Compliance & Application Security" on September 10th, New York City
Contributed and Quoted in American Bankers Association Journal (ABA Journal), article by Lauren Bielski - "The Case for E-Project Management"
Contributed and Quoted in Inc Magazine - Inc. Technology, article by Lora Shinn - "Instituting Security Metrics"
IT Compliance and Controls is ranked in the Top 15 books for CIOs by CIO Insights
Contributed and Quoted in SC Magazine: "VISA reports progress on PCI DSS compliance" January 2008
E-Commerce News: “Pleasing Customers, Securing Transactions: Having E-tail both ways” January 2008
Press Release: Retailers emphasizing balancing Compliance and Operational Resiliency December 2007
PCI DSS Teleconference: "Let's Talk PCI: An hour with the experts (co-presented with Tizor Systems)
Environmental Blogroll Software Development Acquire and Support GLBA SDLC FTC Application Controls Change Control Oyster PCI Security and Assurance Life Cycle Management Identity Theft Fraud Physical Access Human Resources Direcitonal Alignment Operations Resiliency Logical Access Access and Authorization Trusted Computing Platform Systems Technology Strategy Orchestration Tone at the Top Sustain Operations Policy and Procedures Trusted Communications and Network iso27001 Incident Response Capability Technology Intelligence Monitoring and Performance Reviews Risk Awareness Uncategorized
-
Recent Posts
Recent Comments
- lfc_1892: Protecting payment systems seems to be high on the agenda but I think this issue needs to be viewed...
- DocuMaker: Outsourcing Through Rentacoder explains the proper way to outsource online before making mistakes via...
- Scott Patterson: Thank you for finding and referencing the ACFE’s information in your blog article. We hope it...
- steve hunt: Good work, James. But don’t you feel that the IT security- or auditor-view of data protection is...
- John James O'Brien: Governance, transparency, consistency–principles&# 8211;all good. I’d like to see ICT...
© 2006–2007 IT Compliance and Controls — Sitemap — Cutline by Chris Pearson