Foundations of GRC: Establishing an Enterprise View of Risk & Compliance

Published: September, 2009 - Success in today's dynamic business environment requires the organization to integrate, build, and support business process with an enterprise view of risk and compliance. Without a new approach to risk and compliance, the scattered and non-integrated risk and compliance approaches of the past fail and introduce greater risk and regulatory threats to the business.

IT GRC: Managing Risk, Improving Visibility, and Reducing Operating Costs

For all organizations with current or planned initiatives in the area of IT governance, risk management, and compliance (IT GRC), this report describes the policy, planning, process, and organizational elements of successful implementations.

Six Critical Steps to Managing Electronically Stored Information under FRCP (Part 2)

Once an organization has become litigation ready by creating an ESI survey data map,implementing a records retention and deletion process, and establishing a litigation hold process, additional steps can be taken to further prepare for legal actions.

Simplify IT Risk and Compliance Management

Recorded: Jan 26 2011   View Webinar

In this panel discussion we will address the challenges IT teams face as a result of siloed, inefficient point tool approaches to administering and enforcing security and compliance policy across hybrid IT infrastructures.

A Risk-Based Approach to PCI Compliance: Evolving Compliance Strategies to Meet Changing Business Demands

Recorded: 19 March 2010   View Webinar

This session will explore how the global marketplace and current business environment is impacting companies of all sizes through competitive and regulatory pressures. The discussion will cover how an outsourced/managed PCI solution can help companies address their compliance challenges and improve business performance.

PCI Compliance For Dummies!

Welcome to PCI Compliance For Dummies! Compliance with the Payment Card Industry (PCI) Data Security Standard (DSS) is mandatory if your company stores, processes, or transmits payment cardholder data. This book is all about understanding PCI and how merchants can comply with its requirements.

Six Critical Steps to Managing Electronically Stored Information under FRCP (Part 1)

Litigation always, has been, and will continue to be, a reality of doing business. What is changing, however, is discovery and its focus on electronically stored information (often abbreviated ESI).

Ten Essential Elements of a Successful Electronic Records Retention and Destruction Program

Organizations today are finding themselves under increasing pressure, both legal and regulatory, to properly retain or delete documents. While policies and procedures for paper records may seem adequate, many companies find it difficult to translate those policies and requirements to electronically stored information (ESI) such as e-mail messages and electronic document files.

Winning the PCI Compliance Battle: A Guide for Merchants and Member Service Providers.

This white paper reviews the basics of PCI, including who must comply, compliance requirements, validation requirements and penalties. It also examines key things to look for when selecting a PCI network testing service and introduces QualysGuard PCI.