Search Results Page
IT Compliance Management
A process of establishing an appropriate set of controls within the IT environment and managing the implementation of those controls.
Displaying Results for:
- IT Compliance Management (Remove)
Track research using these terms:
Sort by:
Displaying results 1-25 of 36 results
Results based on your search criteria
For Security & Risk Professionals
Cloud Computing Checklist: How Secure Is Your Cloud? 
(43 KB XLS)
by Chenxi Wang, Ph.D., October 30, 2009
If your organization is interested in cloud computing, there are some key security and privacy, compliance, and legal issues that you need to broach with the service provider. To help with this process, we've put together a checklist of key issues and . . .
For Security & Risk Professionals
PCI X-Ray: File Integrity Monitoring
by John Kindervag, October 26, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Application Development & Program Management Professionals
Test Data Privacy Is Critical To Meet Compliances
Data Masking Can Help Protect Test Data
by Noel Yuhanna, October 13, 2009
Using customer, employee, or other confidential data straight from production for testing or developing applications violates data privacy laws and regulations and makes that data a soft target for attacks. Data privacy is not just a concern for production . . .
For Infrastructure & Operations Professionals
IT Compliance: From Painful To Pleasant
by Khalid Kark, July 31, 2009
With increasing workforce mobility and the extension of the business supply chain globally, organizations are struggling to keep up with increasing corporate and regulatory compliance requirements. Regulations such as the Health Insurance Portability . . .
For Security & Risk Professionals
Articulating The Business Value Of Information Security
by Khalid Kark, July 24, 2009
Many CISOs struggle to articulate the value of their security programs and justify the security budget to business and executive management. This problem was acutely evident in the current economic downturn: Many security managers saw their budgets slashed, . . .
For Security & Risk Professionals
PCI X-Ray: Network Segmentation
by John Kindervag, July 17, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Enterprise Architecture Professionals
EA: Incorporate Enterprise Role Management Into Your Architecture Strategy
by Henry Peyret, July 15, 2009
Adoption of enterprise role management tools is increasing dramatically as a result of compliance and cost pressures. Enterprise role management tools simplify the provisioning and deprovisioning of employee and contractor access to resources, enabling . . .
For Security & Risk Professionals
How Secure Is Your Cloud?
A Close Look At Cloud Computing Security Issues
by Chenxi Wang, Ph.D., May 8, 2009
Amid a downturn economy, organizations increasingly look to cloud computing to improve operational efficiency, reduce headcounts, and help with the bottom line. But security and privacy concerns present a strong barrier-to-entry. In an age when the consequences . . .
For Security & Risk Professionals
Topic Overview: Governance, Risk, And Compliance
by Chris McClean, April 29, 2009
Successful businesses universally strive to achieve better corporate governance, more effective measurement and management of risk, and greater assurance that compliance requirements are met. Whether or not these efforts bear the governance, risk, and . . .
For Vendor Strategy Professionals
Market Overview: Green IT Services
A Bright Outlook For IT Sustainability Consulting
by Christopher Mines, April 24, 2009
IT services companies are responding to client needs by building green IT and corporate sustainability practices. We continue to forecast very healthy growth — 60% CAGR —for this market, peaking at $4.8 billion in worldwide user spending in 2013. Since . . .
For Security & Risk Professionals
PCI X-Ray: IDS And IPS
by John Kindervag, April 8, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For B2B Market Research Professionals
Disaster Recovery Solutions Remain High On Healthcare's Agenda 
(406 KB PPT)
by Eric G. Brown, March 27, 2009
Disaster recovery solutions have been a critical agenda item for hospital IT organizations, but years of HIPAA regulatory pressure and post-Katrina lessons have brought the sector into relative maturity. However, the tail remains, and there's urgency . . .
For Security & Risk Professionals
Inquiry Spotlight: PCI, Q1 2009
by John Kindervag, February 26, 2009
With the increase in identity theft and fraud, credit card companies are making a concentrated effort to improve compliance rates. Merchants now face fines or loss of privileges to use the card brand if an audit shows noncompliance. Forrester's IT security . . .
For Infrastructure & Operations Professionals
Look To Network Access Control (NAC) To Streamline IT Compliance
Maximize Your NAC Deployment To Aid In GLBA, HIPAA, PCI DSS, And SOX Efforts
by Robert Whiteley, February 24, 2009
Did your organization just fail an audit test, and were you, the IT manager, blamed for not keeping your infrastructure or IT operations up to snuff? The Gramm-Leach-Bliley Act (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), the . . .
For Security & Risk Professionals
PCI X-Ray: Firewalls
by John Kindervag, February 13, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Security & Risk Professionals
Market Overview: Enterprise Role Management
Access Recertification And Role Management Converge, Integrate With Provisioning
by Andras Cser, February 6, 2009
Enterprise role management, role mining, and access recertification help enterprises with maintaining segregation of duties, keeping up with regulatory compliance requirements, and automating role-based provisioning to enterprise applications — even through . . .
For Security & Risk Professionals
The GRC Technology Puzzle: Getting All The Pieces To Fit
Breaking Down The Complex GRC Technology Landscape
by Chris McClean, February 3, 2009
At a time when the global business community struggles to enhance internal controls and maintain long-term viability, improvements in governance, risk, and compliance (GRC) programs can be well worth the investment. Technology plays an integral role in . . .
For Security & Risk Professionals
PCI X-Ray: What's New In 1.2?
by John Kindervag, January 30, 2009
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Security & Risk Professionals
Consolidation Looms For The IT GRC Market
Industry Takes Aim At More Complete Compliance Management
by Marc Othersen, Chris McClean, January 5, 2009
As companies find ways to streamline compliance programs and reduce costs, the IT governance, risk, and compliance (GRC) vendor market is quickly looking like prime feeding ground for merger and acquisition sharks. Low company valuations, recent leaps . . .
For Security & Risk Professionals
Clearing The Air On IT GRC
by Marc Othersen, Jonathan Penn, October 29, 2008
With the vast array of vendors claiming to have IT governance, risk, and compliance (IT GRC) products, the true definition of IT GRC has gotten lost, and security professionals are left confused and uncertain. In an effort to institute clarity, Forrester . . .
For Vendor Strategy Professionals
Cutting Through The IT GRC Hype
by Jonathan Penn, October 29, 2008
IT governance, risk, and compliance (IT GRC) provides a useful framework for coordinating many different endeavors to make more risk-informed business decisions. Market interest in IT GRC is at least as much about the practice of IT GRC as it is about . . .
For Infrastructure & Operations Professionals
How To Stay Compliant When Times Are Tough
Best Practices: IT Control Testing, Reporting, And Integration
by Simon Yates, October 24, 2008
In the midst of an economic downturn that seems at least partly caused by inadequate enforcement of regulations, the demand for IT controls is increasing. IT professionals must monitor an ever-expanding array of IT assets and track their compliance to . . .
For Security & Risk Professionals
PCI X-Ray: Log Management
by John Kindervag, October 20, 2008
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
For Security & Risk Professionals
Best Practices: IT Control Testing, Reporting, And Integration
by Marc Othersen, October 2, 2008
Control testing and reporting are the foundations of IT compliance, while integration is critical for sustainability. To uncover best practices for IT control testing, reporting, and integration, Forrester spoke with companies from a variety of industries . . .
For Security & Risk Professionals
PCI X-Ray: Wireless Security
by John Kindervag, October 1, 2008
To effectively deal with the broad and complex requirements of Payment Card Industry (PCI) data security, you need to break the elements apart to provide enhanced clarity. We've designed the PCI X-Ray series to provide actionable information to help Forrester . . .
