Register

Forgot Password

Site FAQ

Home > IT Blogs > Regulatory Reality/

Regulatory Reality:

SAS 70

April 18, 2011 6:22 PM

Epsilon: Why vendor management is critical.

Posted by: David Schneier

Audit, bank, banking, compliance, FDIC, FFIEC, GLBA, NCUA, regulatory, Regulatory Compliance, requirements, risk, SAS 70, vendor, Vendor Management

A few years back we hired a local painting contractor to do some work around my house. Upon completing his sales spiel he announced that he often relies upon subcontractors for the less skilled work and wanted to be upfront about that before we entered into any sort of deal with him. Anyone he...

0 Comments

RSS Feed

Email a friend

May 7, 2009 9:58 PM

PCI compliance is not the end all

Posted by: David Schneier

Audit, PCI, Regulatory Compliance, SAS 70, Security

I was sitting in on a meeting this week during which a security review was being conducted for a proposed software solution for my client. The product was designed and hosted by a third-party vendor.

At first blush I was...

0 Comments

RSS Feed

Email a friend

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags

Regulatory Reality:

SAS 70

Epsilon: Why vendor management is critical.

PCI compliance is not the end all

About This Blog

Browse This Blog’s Tags

Security Architecture Insider

Archives

Blog Roll

Subscribe to Alerts