Home > IT Blogs > Regulatory Reality/

Regulatory Reality:

February, 2012

1
February 16, 2012  5:49 PM

BITS Shared Assessment – No Free Lunch.



Posted by: David Schneier
BITS, COBIT, compliance, GLBA, ISACA, ITGI, NCUA, regulatory, Regulatory Compliance, Shared Assessement, SIG, Vendor Management, vendor risk, vendor risk assessment

On Monday the BITS Shared Assessment was free, on Tuesday it cost $5,000 per year (at a minimum). My first thought was that it was just like what drug dealers do - they give you free product until you're hopelessly addicted and then start making you pay to feed that addiction.  My second...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

February 3, 2012  5:58 PM

Governance, risk and compliance – related but not the same.



Posted by: David Schneier
Audit, auditor, compliance, controls, exam, examiner, FFICE, GLBA, governance, GRC, internal controls, NCUA, regulations, regulatory, Regulatory Compliance, risk

I was sitting in a meeting this week listening to a group of very bright people talking about an initiative centered on installing a software solution and I realized something rather disturbing; somewhere along the way in our industry governance, risk and compliance has started melting together and...

  Bookmark and Share     0 Comments     RSS Feed     Email a friend

1