Compliance Archive
I find that I wrote this, a couple of years ago, in IT Governance – Guidelines for Directors: “Basel 2 seeks to achieve its goal of strengthening the international financial system through three pillars. Pillar 1 aims to align a …
As I see it, those organisations that survived 2008 are only going to get through 2009 if they manage cash really carefully. Cash management is only useful if it takes into account the full range of possible risks faced by …
The essential difference between the US and the UK models of corporate governance is that, in the UK, there is a clear understanding of how board rooms work combined with a flexible, principles-based approach while, in the US, corporate governance …
It is hard to get away from media stories about accidental losses of personal or confidential data – Government laptops stolen from a car, secret council files found in a skip, and so on. The latest strand to this story …
The Realtime IT Compliance blog carried a significant post the other day – the first signs of US civil lawsuits against companies losing customer data. In this case, it is a $54 million claim against Best Buy for losing a …
We have seen a lot of media interest this week in the poll we recently did on the issue of IT governance, which underlined how few boards currently have their arms around this important responsibility. Some of the articles to …
Part of our business is advising companies that wish to become ISO27001 certificated and we are delighted that two clients recently passed their independent audits with flying colours. Gemserv is an independent consultancy in the energy sector while Easynet is …
ZDNet reports that new research from IDC is predicting a sixfold increase in the amount of digital information created over the next four years, which could have serious implications for compliance and IT departments. The report, entitled ‘The Expanding Digital …
The British Standards Institute has found a significant improvement in companies’ business continuity planning in the past 12 months. However, of the 100 FTSE-250 firms interviewed, “Only 45% … had comprehensive plans in place for a supply chain failure, and …
IT Governance, as Jason Cole points out, is more than project management, more than regulatory compliance, more than CobiT or ITIL or ISO 27001. It’s also somewhat more than his article suggests. There are three books that tackle this subject, …