IT Compliance and Controls

Converging Business, Information, and Controls

IT Compliance and Controls header image 4

Entries Tagged as 'Sustain Operations'

Hackers attack Georgia

August 13th, 2008 · No Comments

In the Wall Street Journal and on several online resources there is documented evidence that an information attack was launched against the country of Georgia and its government systems.  This attack coincided with the Russian offensive.  The implications of this attack are tremendous and shift the theory beyond information cyberwarfare to practical lessons.  A few […]

[Read more →]

Tags: Incident Response Capability · Monitoring and Performance Reviews · Operations Resiliency · Risk Awareness · Security and Assurance · Sustain Operations

Globalized Risks to Operations, case in point: Google’s YouTube and Pakistan

February 26th, 2008 · No Comments

On Sunday a foreign government enforced its sovereign right to censor its citizens, and consequently caused a global outage (2 hours) to the most popular video side in the planet, run by the most sophisticated global internet company – Google.  The lessons here resonate with the need for organizations to consider all aspects of risk […]

[Read more →]

Tags: Incident Response Capability · Monitoring and Performance Reviews · Operations Resiliency · Risk Awareness · Sustain Operations · Trusted Communications and Network

Broken Internet Connections disconnect two continents

February 11th, 2008 · 1 Comment

The criticality of the Internet has grown exponentially. Consumers rely on Internet based applications (or RIA) for everything from email, CRM, ERP, publishing – and this online portal. Businesses have generally transitioned from dedicated frame relays, and leased lines to VPN tunnels through the Internet (link to Cisco Whitepaper). The efficiency gained by organizations sourcing […]

[Read more →]

Tags: Incident Response Capability · Monitoring and Performance Reviews · Operations Resiliency · Risk Awareness · Sustain Operations · Trusted Communications and Network

CIA: Energy Infrastructure Attacked

January 24th, 2008 · No Comments

In my book, IT Compliance and Controls, I highlight the importance of the energy infrastructure, and the risks that these systems face given their newly interconnectedness. To highlight the relevant points from the book – the energy infrastructures of the world support the medical, HVAC, security, and financial systems of our economies. The loss of […]

[Read more →]

Tags: Access and Authorization · Application Controls · Incident Response Capability · Logical Access · Monitoring and Performance Reviews · Physical Access · Sustain Operations · Technology Intelligence · Trusted Computing Platform Systems

Big Business Compliance and Controls Reports released today…

September 27th, 2007 · No Comments

It seems that these past few days everyone is releasing a study or report surrounding business compliance and controls. Each has very valuable information and is definitely worth the download and read. I have included each below, and will add as new ones come out (if any) tomorrow). The biggest takeaways of these reports should […]

[Read more →]

Tags: Direcitonal Alignment · Policy and Procedures · Risk Awareness · Sustain Operations · Technology Intelligence · Technology Strategy Orchestration