IT Compliance Advisor:



July 29, 2009  2:27 PM

Cloud computing data security creates challenges for compliance officers

Posted by: Scot Petersen
Cloud computing, compliance, data center, encryption, podcast, risk, Security

Cloud computing is just another form of outsourcing, and like outsourcing, it comes with its own set of risks and compliance challenges. As the data center begins to disappear into the cloud, data security tops the list. But is encryption, specifically public key infrastructure, up to the task...

July 21, 2009  5:58 PM

Freerisk financial risk modeling services challenge S&P, Moody’s

Posted by: Scot Petersen
financial risk, Freerisk, Moody's, podcast, risk, S&P, XBRL

In the wake of the financial meltdown trigged by the subprime mortgage crisis in the fall of 2008, credit ratings agencies like Moody's and Standard and Poor's became the focus for some of the blame. Did they ignore key risk indicators that would have alerted investors much earlier to the house of...

April 21, 2009  3:56 PM

The future of compliance policy management

Posted by: Scot Petersen
compliance, future, management, podcast, policy, risk, Security

Compliance is not just "one thing" for businesses anymore. Compliance has become a broad subject like "finance" or "security," with many sub-topics underneath that umbrella. The best strategy for the range of compliance policy management issues facing IT and business managers today is to take a...

April 7, 2009  3:09 PM

Vetting users exposes new compliance risks

Posted by: Scot Petersen
compliance, enterprise risk management, podcast, privacy, risk, risk management, Security

Most visitors to websites arrive and leave relatively anonymously. But as e-commerce evolves, businesses are using the Web to invite in specific users, in order to offer special services to them or participate in a study such as a clinical trial. Steve Ross, a director in the

March 19, 2009  8:43 AM

How do you align an IT risk assessment with COBIT controls?

Posted by: SarahCortes
Audit, business, CISA, COBIT, Information technology, IT controls, risk, Risk assessment, risk management

[One of our readers, compliance officer Ramon de Bruijn, wrote to the editors of at last month looking for some advice. Specifically, he asked "What is the best way to implement a risk assessment in...

February 2, 2009  4:20 PM

Blogroll: IT Governance, Risk, and Compliance

Posted by: GuyPardon
Blogroll, governance, risk

Earlier today,  we added Charles Denyer's Regulatory Compliance, Governance and Security to the blogroll. Next up: Robert E....

Bookmark and Share     0 Comments     RSS Feed     Email a friend

January 28, 2009  6:55 PM

The importance of risk management in IT compliance

Posted by: GuyPardon
compliance assessment, compliance management, enterprise risk management, IT compliance, key risk indicator, risk, risk management

This is a guest post by Cass Brewer, the founder of


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: