IT Compliance Questions

1

Changing proxy rights for select users
I work in a company that has a proxy who can limit the people acces into some sites,my question is…what changes can i do to  the proxy server to accept these sites for one or more users?(usual changes into one basic proxy server)

Answer Question   |  November 18, 2010  1:30 PM
IT Compliance, Proxy Server Configuration, Proxy servers, Server configuration
asked by:
5 pts.

Compliance SOX certification
Hello, I’m looking to acquiring SOX certification. Are there any additional compliance certifications that your would recommend and through which vendor?

Answer Question   |  September 28, 2010  12:32 PM
CIO, Compliance, IT certification, IT Compliance, SOX, SOX compliance
asked by:
10 pts.

Is compliance preventing you from moving to the cloud?
Are compliance concerns (such as PCI DSS) or more general data security concerns preventing you from moving data to the cloud? What would be required for you to reconsider your position?

Answer Question   |  October 19, 2010  5:32 PM
Cloud compliance, Cloud Computing, Cloud Computing in 2010, Cloud computing security, Compliance Assessment, IT Compliance, PCI DSS
asked by:
16,755 pts.

Privacy of Data – SAP Implementation
[dd class="desc">Our SAP Implementation Consultant is insisting on a point which is in our opinion against the privacy of the companies real time historical data. The management is not willing to permit him or any consultant to view our historical data (such as , item master, price lists, costing details etc). The management is prepared to [...]

Answer Question   |  December 30, 2009  4:37 PM
IT Compliance, Privacy of Data, Privacy rights, SAP implementation
asked by:
50 pts.

Formulating a backup policy for data generated by terminated employees.
Our company is trying to use best practices where possible to formulate a policy to cover the backup, storage, security, retrieval and retention of data from the PCs, home drives and Exchange mailboxes of employees that have terminated employment. Our company is publicly traded so the Sarbanes-Oxley (SOX) Act is relevant and we do have [...]

Answer Question   |  November 30, 2009  5:34 PM
Compliance checklist, Data backup, data retention, Data Retention Policy, IT Compliance, Sarbanes-Oxley Act
asked by:
215 pts.

How was your last IT compliance audit experience?
How was your latest IT compliance audit experience? Were there any particular pain points or worries you had?

Answer Question   |  November 6, 2009  4:07 PM
Compliance checklist, IT auditing, IT audits, IT Compliance, Open IT Forum
asked by:
4,265 pts.

Is Outlook 2007 IRM HIPAA compliant?
Trying to figure out if by using Permissions in Outlook 2007 to encrypt and password protect information–it that considered HIPAA compliant?

Answer Question   |  October 9, 2009  1:32 PM
HIPAA, IT Compliance, Outlook 2007, Outlook permissions
asked by:
16,755 pts.

Industry standard SOX audit checklist?
Working through SOX compliance issues with updated infrastructure, documented interfaces, reviewed controls and on and on — but is there an industry SOX audit checklist to show exactly what auditors are looking for concerning compliance? If so, would someone point me to it? Thank you. Moderator Note: This is a submitted question

Answer Question   |  July 1, 2009  6:30 PM
IT Compliance, Sarbanes-Oxley Act, SOX, SOX checklist, SOX compliance
asked by:
6,565 pts.

Certification recommendation?
I have a Bachelor’s in Business Administration and have worked in the field of office administration for over 10 years. I have recently been given the option to move over to IT Compliance as a Risk Analyst. My boss the CIO feels this would be a great field for me to get into. The only [...]

Answer Question   |  June 3, 2009  12:09 AM
Certifications, CISA, Information security careers, IT careers, IT Compliance, Risk Analyst, Security certifications
asked by:
5 pts.

SOX compliance for small businesses
Where do companies go for help with getting Sarbanes Oxley compliant? Are CIOs and software development managers required in these organizations? Are business analysts required to know the appropriate SOX controls as part of their normal jobs?

Answer Question   |  April 3, 2009  11:03 PM
IT Compliance, Sarbanes-Oxley, SOX, SOX compliance
asked by:
15 pts.

How to perform network audit or assessment
how to perform netwrok audit or assessment

Answer Question   |  March 11, 2009  9:09 AM
Auditing, IT audits, IT Compliance, Networking audit
asked by:
5 pts.

Where can I find Cisco 2801 regulatory certificates
where can I find cisco 2801 regulatory certificates

Answer Question   |  March 9, 2009  9:19 PM
Cisco, Cisco 2801, Cisco Routers, IT Compliance, regulatory compliance
asked by:
5 pts.

Outside vendor located on premises
We have an outside vendor located on our premises making credit card sales. If they are not PCI compliant, and/or if their data becomes compromised, what is our liability, considering it will be our shared customer who is affected?

Answer Question   |  February 23, 2009  12:03 AM
Compliance, IT Compliance, Payment Card Industry Data Security Standard, PCI compliance
asked by:
10 pts.

What is the best way to implement a risk assessment in an IT department that will align COBIT controls with risks?
A compliance officer in Europe could use some advice from fellow IT professionals and executives. His IT budget is being scrutinized, as is the case in every organization in 2009; he needs targets to get things done more efficiently but without taking on more risk. His department is evaluating benchmarking IT application controls as a [...]

Answer Question   |  March 23, 2009  6:04 PM
COBIT, Compliance, IT Compliance, regulatory compliance, Risk assessment, Risk management
asked by:
15 pts.

1