IT GRC Forum

FacebookJoin our Linkedin Group!Follow us on Twitter!Subscribe to our Feeds!

CoalfireWhite Paper: HIPAA and HITRUST - FAQ

The objective of this document is to provide guidance to Covered Entities, Business Associates, and subcontractors (as defined by HIPAA), and to assist in identifying the best overall approach to becoming compliant and secure in the healthcare industry.


VoltageCase Study: Global Investment Bank – Solving Data Residency and Privacy Compliance Challenges

Voltage SecureData™ Enterprise is the backbone of the global cloud, enterprise and mobile data security strategy at a western European investment bank with global presence. At the highest levels the bank recognizes their data is a strategic asset and their goal is to maximize the value of their information.


www.lockpath.comUnlock the Power of the UCF to Solve Complex Compliance Issues

Managing compliance is tedious, time consuming and complex. Organizations are required to comply with multiple sets of external regulations encompassing hundreds, if not thousands, of individual controls scoped with varying applicability across multiple geographic locations and business units. To add to the confusion, this compliance is a constantly shifting target. The Unified Compliance Framework (UCF) eases the burden by giving organizations a defined set of common "harmonized" controls covering more than 500 separate regulations.


SDG CorpHow to Effectively Manage the Compliance Lifecycle

In today's world of high uncertainty, rapid economic changes, and increasingly complex regulations, compliance has become a permanent part of doing business. Juggling the requirements of industry regulations, data privacy laws, and government mandates is no easy task, and maintaining ongoing compliance is complicated by constant changes, amendments, and overlaps. What's more, as regulations increase, the resources needed to comply with them increase as well – and so do the stakes.


BrainloopTen Questions to Identify Compliance Risks When Sharing Information

Corporate and regulatory compliance policies have forced companies to ensure that information flows are documented, auditable, and highly secure. Yet in order to conduct their business, companies must share sensitive information outside the firewall, introducing serious potential information risk.


MEGAEnterprise Architecture (EA) as an enabler for GRC

Many organisations' governance, risk management and compliance (GRC) practices have not changed for years. The result is organisations are struggling to keep up with the complex regulatory environment and meet external stakeholders' expectations. Many organisations, no matter what sector they trade in are seeking to become more flexible and profitable while increasing internal controls and reducing risk. These objectives appear to be contradictory, but one way large organisations can unite them is by improving their approach to GRC.

  • «
  •  Start 
  •  Prev 
  •  1 
  •  2 
  •  3 
  •  4 
  •  5 
  •  6 
  •  7 
  •  Next 
  •  End 
  • »
Page 1 of 7

Subscribe via Email

 Your Email: