Posted by: WhatIsAlex
access management, audit, compliance, FFIEC, GLB, GRC, HIPAA, IAM, identity access management, identity management, IT compliance, PCI DSS, SOX, webcast
Please join us for a live webcast focusing on the fundamentals of #compliance at 2 PM EST today: http://bit.ly/NucY PCI, HIPAA, GLB & FFIEC
Today’s webcast will include a discussion of major #compliance regulations, including #PCIDSS, #HIPAA, #GLB & #FFIEC http://bit.ly/NucY
Richard Mackey, Ross Chevalier, Pat Duty & Steven Jone will be speaking on today’s #compliance webcast: http://bit.ly/NucY
Andrew Briney, a VP & publisher at TTGT, is moderating the #compliance panel. Presentations on identity & access mgmt http://bit.ly/NucY
Richard Mackey starting off. ID/access mgmt fundamental to #compliance. All regs require 3 elements: Oversight, Accountability, Transparency
‘Change management a key aspect of #compliance. Any alteration in IT environment should be strictly monitored.’ -Richard Mackey
Identity management is the central component that allows #compliance processes to work. Who has access to what at any given time?
HIPAA & PCI DSS #compliance requirements are driving the adoption & growth of ID/access mgmt systems. Customization is key. Risks differ.
FYI: IAM = identity & access management. Mackey is listing basic requirements that IT pros should look for in IAM systems. Integration key.
IAM is central to every other #compliance regulatory requirement: logging, access control, audits & monitoring. Must be trustworthy/robust
The latest versions of #compliance software enable the end user, easing the operational load on the corporate IT. -Ross Chevalier
Real time non-repudiative audit of all of the data across the enterprise is the end goal of #compliance software. Document & demonstrate.
GRC (governance, risk & #compliance) software is fundamental to effective management. WhatIs.com’s definition: http://bit.ly/d03y
Today’s #webcast is starting a roundtable discussion on #compliance. Q&A will begin a bit later in the program. Budgeting up first.
Great Q: How does managing #compliance at a small buz differ from large co.? A: SMBs make decisions quickly. Enterprises have dedicated CCOs
“Hospitals have even more urgency around addressing #compliance because of increasing incidence of #HIPAA violations” http://bit.ly/NucY
Best practice: Admins/superusers cannot/should not be the #compliance auditor because of the nature of access. Don’t allow shared accounts.
Great roundtable on #compliance best practices. So much so that capturing it in 140 characters isn’t gonna work. Listen: http://bit.ly/NucY
@chrislehmann Amazing how much levity a little sarcasm can bring to technology topics like #compliance. Any good compliance jokes to share?
If you’d like to learn more about the #compliance issues discussed today, visit http://www.novell.com/cmp
An archived version of today’s webcast will be available on http://SearchSecurity.com within the week. Thanks to all who participated.