1
Changing proxy rights for select users
I work in a company that has a proxy who can limit the people acces into some sites,my question is…what changes can i do to the proxy server to accept these sites for one or more users?(usual changes into one basic proxy server)
Answer Question
| November 18, 2010 1:30 PM
IT Compliance, Proxy Server Configuration, Proxy servers, Server configuration
I work in a company that has a proxy who can limit the people acces into some sites,my question is…what changes can i do to the proxy server to accept these sites for one or more users?(usual changes into one basic proxy server)
Answer Question
| November 18, 2010 1:30 PM
IT Compliance, Proxy Server Configuration, Proxy servers, Server configuration
Compliance SOX certification
Hello, I’m looking to acquiring SOX certification. Are there any additional compliance certifications that your would recommend and through which vendor?
Answer Question
| September 28, 2010 12:32 PM
CIO, Compliance, IT certification, IT Compliance, SOX, SOX compliance
Hello, I’m looking to acquiring SOX certification. Are there any additional compliance certifications that your would recommend and through which vendor?
Answer Question
| September 28, 2010 12:32 PM
CIO, Compliance, IT certification, IT Compliance, SOX, SOX compliance
Is compliance preventing you from moving to the cloud?
Are compliance concerns (such as PCI DSS) or more general data security concerns preventing you from moving data to the cloud? What would be required for you to reconsider your position?
Answer Question
| October 19, 2010 5:32 PM
Cloud compliance, Cloud Computing, Cloud Computing in 2010, Cloud computing security, Compliance Assessment, IT Compliance, PCI DSS
Are compliance concerns (such as PCI DSS) or more general data security concerns preventing you from moving data to the cloud? What would be required for you to reconsider your position?
Answer Question
| October 19, 2010 5:32 PM
Cloud compliance, Cloud Computing, Cloud Computing in 2010, Cloud computing security, Compliance Assessment, IT Compliance, PCI DSS
Privacy of Data – SAP Implementation
[dd class="desc">Our SAP Implementation Consultant is insisting on a point which is in our opinion against the privacy of the companies real time historical data. The management is not willing to permit him or any consultant to view our historical data (such as , item master, price lists, costing details etc). The management is prepared to [...]
Answer Question
| December 30, 2009 4:37 PM
IT Compliance, Privacy of Data, Privacy rights, SAP implementation
[dd class="desc">Our SAP Implementation Consultant is insisting on a point which is in our opinion against the privacy of the companies real time historical data. The management is not willing to permit him or any consultant to view our historical data (such as , item master, price lists, costing details etc). The management is prepared to [...]
Answer Question
| December 30, 2009 4:37 PM
IT Compliance, Privacy of Data, Privacy rights, SAP implementation
Formulating a backup policy for data generated by terminated employees.
Our company is trying to use best practices where possible to formulate a policy to cover the backup, storage, security, retrieval and retention of data from the PCs, home drives and Exchange mailboxes of employees that have terminated employment. Our company is publicly traded so the Sarbanes-Oxley (SOX) Act is relevant and we do have [...]
Answer Question
| November 30, 2009 5:34 PM
Compliance checklist, Data backup, data retention, Data Retention Policy, IT Compliance, Sarbanes-Oxley Act
Our company is trying to use best practices where possible to formulate a policy to cover the backup, storage, security, retrieval and retention of data from the PCs, home drives and Exchange mailboxes of employees that have terminated employment. Our company is publicly traded so the Sarbanes-Oxley (SOX) Act is relevant and we do have [...]
Answer Question
| November 30, 2009 5:34 PM
Compliance checklist, Data backup, data retention, Data Retention Policy, IT Compliance, Sarbanes-Oxley Act
How was your last IT compliance audit experience?
How was your latest IT compliance audit experience? Were there any particular pain points or worries you had?
Answer Question
| November 6, 2009 4:07 PM
Compliance checklist, IT auditing, IT audits, IT Compliance, Open IT Forum
How was your latest IT compliance audit experience? Were there any particular pain points or worries you had?
Answer Question
| November 6, 2009 4:07 PM
Compliance checklist, IT auditing, IT audits, IT Compliance, Open IT Forum
Is Outlook 2007 IRM HIPAA compliant?
Trying to figure out if by using Permissions in Outlook 2007 to encrypt and password protect information–it that considered HIPAA compliant?
Answer Question
| October 9, 2009 1:32 PM
HIPAA, IT Compliance, Outlook 2007, Outlook permissions
Trying to figure out if by using Permissions in Outlook 2007 to encrypt and password protect information–it that considered HIPAA compliant?
Answer Question
| October 9, 2009 1:32 PM
HIPAA, IT Compliance, Outlook 2007, Outlook permissions
Industry standard SOX audit checklist?
Working through SOX compliance issues with updated infrastructure, documented interfaces, reviewed controls and on and on — but is there an industry SOX audit checklist to show exactly what auditors are looking for concerning compliance? If so, would someone point me to it? Thank you. Moderator Note: This is a submitted question
Answer Question
| July 1, 2009 6:30 PM
IT Compliance, Sarbanes-Oxley Act, SOX, SOX checklist, SOX compliance
Working through SOX compliance issues with updated infrastructure, documented interfaces, reviewed controls and on and on — but is there an industry SOX audit checklist to show exactly what auditors are looking for concerning compliance? If so, would someone point me to it? Thank you. Moderator Note: This is a submitted question
Answer Question
| July 1, 2009 6:30 PM
IT Compliance, Sarbanes-Oxley Act, SOX, SOX checklist, SOX compliance
Certification recommendation?
I have a Bachelor’s in Business Administration and have worked in the field of office administration for over 10 years. I have recently been given the option to move over to IT Compliance as a Risk Analyst. My boss the CIO feels this would be a great field for me to get into. The only [...]
Answer Question
| June 3, 2009 12:09 AM
Certifications, CISA, Information security careers, IT careers, IT Compliance, Risk Analyst, Security certifications
I have a Bachelor’s in Business Administration and have worked in the field of office administration for over 10 years. I have recently been given the option to move over to IT Compliance as a Risk Analyst. My boss the CIO feels this would be a great field for me to get into. The only [...]
Answer Question
| June 3, 2009 12:09 AM
Certifications, CISA, Information security careers, IT careers, IT Compliance, Risk Analyst, Security certifications
SOX compliance for small businesses
Where do companies go for help with getting Sarbanes Oxley compliant? Are CIOs and software development managers required in these organizations? Are business analysts required to know the appropriate SOX controls as part of their normal jobs?
Answer Question
| April 3, 2009 11:03 PM
IT Compliance, Sarbanes-Oxley, SOX, SOX compliance
Where do companies go for help with getting Sarbanes Oxley compliant? Are CIOs and software development managers required in these organizations? Are business analysts required to know the appropriate SOX controls as part of their normal jobs?
Answer Question
| April 3, 2009 11:03 PM
IT Compliance, Sarbanes-Oxley, SOX, SOX compliance
How to perform network audit or assessment
how to perform netwrok audit or assessment
Answer Question
| March 11, 2009 9:09 AM
Auditing, IT audits, IT Compliance, Networking audit
how to perform netwrok audit or assessment
Answer Question
| March 11, 2009 9:09 AM
Auditing, IT audits, IT Compliance, Networking audit
Where can I find Cisco 2801 regulatory certificates
where can I find cisco 2801 regulatory certificates
Answer Question
| March 9, 2009 9:19 PM
Cisco, Cisco 2801, Cisco Routers, IT Compliance, regulatory compliance
where can I find cisco 2801 regulatory certificates
Answer Question
| March 9, 2009 9:19 PM
Cisco, Cisco 2801, Cisco Routers, IT Compliance, regulatory compliance
Outside vendor located on premises
We have an outside vendor located on our premises making credit card sales. If they are not PCI compliant, and/or if their data becomes compromised, what is our liability, considering it will be our shared customer who is affected?
Answer Question
| February 23, 2009 12:03 AM
Compliance, IT Compliance, Payment Card Industry Data Security Standard, PCI compliance
We have an outside vendor located on our premises making credit card sales. If they are not PCI compliant, and/or if their data becomes compromised, what is our liability, considering it will be our shared customer who is affected?
Answer Question
| February 23, 2009 12:03 AM
Compliance, IT Compliance, Payment Card Industry Data Security Standard, PCI compliance
What is the best way to implement a risk assessment in an IT department that will align COBIT controls with risks?
A compliance officer in Europe could use some advice from fellow IT professionals and executives. His IT budget is being scrutinized, as is the case in every organization in 2009; he needs targets to get things done more efficiently but without taking on more risk. His department is evaluating benchmarking IT application controls as a [...]
Answer Question
| March 23, 2009 6:04 PM
COBIT, Compliance, IT Compliance, regulatory compliance, Risk assessment, Risk management
A compliance officer in Europe could use some advice from fellow IT professionals and executives. His IT budget is being scrutinized, as is the case in every organization in 2009; he needs targets to get things done more efficiently but without taking on more risk. His department is evaluating benchmarking IT application controls as a [...]
Answer Question
| March 23, 2009 6:04 PM
COBIT, Compliance, IT Compliance, regulatory compliance, Risk assessment, Risk management
1
