Today’s webcast will include a discussion of major #compliance regulations, including #PCIDSS, #HIPAA, #GLB & #FFIEC http://bit.ly/NucY

Richard Mackey, Ross Chevalier, Pat Duty & Steven Jone will be speaking on today’s #compliance webcast: http://bit.ly/NucY

Andrew Briney, a VP & publisher at TTGT, is moderating the #compliance panel. Presentations on identity & access mgmt http://bit.ly/NucY

Richard Mackey starting off. ID/access mgmt fundamental to #compliance. All regs require 3 elements: Oversight, Accountability, Transparency

‘Change management a key aspect of #compliance. Any alteration in IT environment should be strictly monitored.’ -Richard Mackey

Identity management is the central component that allows #compliance processes to work. Who has access to what at any given time?

@RunawayJimPVD So far, this #compliance webcast is engaging. Mackey makes the fundamentals of #compliance understandable http://bit.ly/NucY

HIPAA & PCI DSS #compliance requirements are driving the adoption & growth of ID/access mgmt systems. Customization is key. Risks differ.

FYI: IAM = identity & access management. Mackey is listing basic requirements that IT pros should look for in IAM systems. Integration key.

IAM is central to every other #compliance regulatory requirement: logging, access control, audits & monitoring. Must be trustworthy/robust

The latest versions of #compliance software enable the end user, easing the operational load on the corporate IT. -Ross Chevalier

Real time non-repudiative audit of all of the data across the enterprise is the end goal of #compliance software. Document & demonstrate.

GRC (governance, risk & #compliance) software is fundamental to effective management. WhatIs.com’s definition: http://bit.ly/d03y

@jvandeboom Working on security audit #compliance forms? Which ones? I bet they’re relevant to today’s webcast: http://bit.ly/NucY

Today’s #webcast is starting a roundtable discussion on #compliance. Q&A will begin a bit later in the program. Budgeting up first.

Great Q: How does managing #compliance at a small buz differ from large co.? A: SMBs make decisions quickly. Enterprises have dedicated CCOs

“Hospitals have even more urgency around addressing #compliance because of increasing incidence of #HIPAA violations” http://bit.ly/NucY

@haxorthematrix I asked the panel whether they had heard of/used #Trustwave for scanning for #PCIcompliance: http://bit.ly/NucY

Best practice: Admins/superusers cannot/should not be the #compliance auditor because of the nature of access. Don’t allow shared accounts.

Great roundtable on #compliance best practices. So much so that capturing it in 140 characters isn’t gonna work. Listen: http://bit.ly/NucY

@chrislehmann Amazing how much levity a little sarcasm can bring to technology topics like #compliance. Any good compliance jokes to share?

If you’d like to learn more about the #compliance issues discussed today, visit http://www.novell.com/cmp

An archived version of today’s webcast will be available on http://SearchSecurity.com within the week. Thanks to all who participated.