FierceFinanceFierceFinanceITFierceCompliance IT   FierceCIO

Do not equate security with compliance

June 6, 2008 — 5:19pm ET | By Jim Kim
Tools
Tags
Security Efforts
Iso Standards
compliance
sarbox

It makes a lot of sense to integrate compliance and security efforts. But Baseline warns that it would be a mistake to think that just because you are in compliance with Sarbanes-Oxley and a host of other regulations that your systems are secure. One mini-trend underway: Rethinking the system, and orienting it around security. That is, let security drive the process, and hit regulatory requirements along the way. Currently, many companies have let compliance remain in the driver's seat. Some companies are focusing on relevant ISO security standards, which would de facto cover a lot of regulatory requirements. Article  

Click here to get the FierceComplianceIT email newsletter for FREE!


Be the first to comment

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

What is 40 + 29?
To combat spam, please solve the math question above.