IT Compliance and Controls

Converging Business, Information, and Controls

IT Compliance and Controls header image 4

Entries Tagged as 'Uncategorized'

Deloitte: Business ‘Value’ Metrics are Needed …

February 24th, 2010 · No Comments

A web cast by Deloitte accompanied with a poll has provided some interesting data points on the state of data governance within businesses.  On the heels of this web cast and poll results I have also added some insight from my field experience and general personal impressions.  Interesting facts include: The definition of Data Governance […]

[Read more →]

Tags: Uncategorized

Widespread Data Breach Evidence found on P2P Environments

February 22nd, 2010 · 1 Comment

The FTC sent out letters to nearly 100 organizations advising that customer and / or employee data that is protected by United States’ laws were widely available online.  The release of such information is not new to most – given the early days of Napster when entire hard drives were shared and Quickbook files and […]

[Read more →]

Tags: Uncategorized

Lessons from Financial Crisis for CIO and Executive Technology Leadership, pulled from Senior Supervisors Group

November 9th, 2009 · No Comments

According to a recent examination by global professionals relating to the failure of risk management controls with respect to financial exposures many of the failures can be attributed to very specific technology failures.  This does not excuse the vast amount of other shortfalls, and apply blame as you see fit arguments.  It does highlight that […]

[Read more →]

Tags: Uncategorized

Hard valuations and real world returns for IT GRC

November 5th, 2009 · No Comments

In the past five years of delivering work that has been focused on aligning and enhancing corporations against contractual agreements, operational requirements, and risks – today officially classified as Governance, Risk and Compliance (or GRC) through technology I have seen real returns for my clients.  While these improvements happen immediately, the real rewards are realized […]

[Read more →]

Tags: Uncategorized

Beware Outsourcing Savings from oDesk and others…

August 13th, 2009 · 1 Comment

An incredible trend is happening in the “for contract” market  – specifically the for hire programmers.  oDesk and eLance both show dramatic upticks in the amount of work being posted and delivered on the site (nice article here on the growth).  oDesk alone is tracking about 100,000 hours a week of work, or nearly $65 […]

[Read more →]

Tags: Uncategorized

Third Party Fraud – Breaking down Trust

August 4th, 2009 · 1 Comment

As the economies around the world remain challenged by the economic environment, the propensity for fraud is significantly higher.  One may speculate that fraud is consistent but only our sensitivity shifts between good and bad times.  Whichever school of thought you support is a matter of risk perspective, and quite irrelevant today. Fraud is up […]

[Read more →]

Tags: Uncategorized

A bright spot in the innovation wave – a Venture Fund with strong focus on IT

July 8th, 2009 · No Comments

As friends know, I have been launching businesses for the past few years with varied success and feelings about venture capitalists.  The summation is the common “chicken and egg problem”.  Meaning most investors that do not understand a new technology, or paradigm shifting solutions the investor(s) seek to see the solution working.  The inventor and […]

[Read more →]

Tags: Uncategorized

How understanding Human Behavior can improve your business

July 2nd, 2009 · No Comments

There are many challenges to growing a business, sustaining a business, and definitely changing a business.  The latter, most would agree, is by far the hardest and largest challenge for organizations seeking to adopt controls throughout the business.  Now controls is a generic term being used now to include policies, procedures, technology safeguards, and routine […]

[Read more →]

Tags: Uncategorized

Compliance Week 2009: Ineffective Controls due to Consolidation of Regulators

June 4th, 2009 · No Comments

This week is Compliance Week and for most that implies vendor pitches and F.U.D., but there has been specific tidbits flow from the conference that indicate otherwise.  If you are not in attendance the consistent flow on Twitter (your window into conversations of interest) and upon blogs should give you a reasonable re-cap.  I strongly […]

[Read more →]

Tags: Uncategorized

Cost of a Lost Laptop

May 4th, 2009 · No Comments

There are numerous instances where laptops and portable devices are lost / stolen.  The classic CEO whose laptop disappeared at a conference to those thieves who coincidentally opened the one trunk of an auditor’s rental car and gained access to significant sensitive information sprinkle the news wires. While imagination can speak to what the impacts […]

[Read more →]

Tags: Uncategorized