Compliance

Strategies, tips and best practices for encouraging and enforcing compliance with security rules and regulations

Compliance articles

5 myths about awareness

Lance Spitzner of SANS Securing the Human program outlines five common misconceptions about security awareness programs

» full story

The security laws, regulations and guidelines directory

Need to find and understand security and privacy laws, regulations and guidelines? Here's a handy compendium with summaries plus links to the full text of each law.

» full story

Let someone break the rules to improve security

Michael Santarcangelo explains why allowing a little non-compliance among staff can actually lead to increased levels of compliance later

» full story

Former Zynga CSO: Innovate or Die

Cloud Security Alliance co-founder and former Zynga CSO Nils Puhlmann reflects on what he's learned and explains why he thinks the industry needs more pioneers

» full story

Pulling it all together: A special report on GRC

An in-depth look at what GRC can do, and what it should do, to help manage risk

» full story

Rick Kelly: Value focus

Now CSO at Ingersoll Rand, Kelly builds security on a foundation of business value (CSO Compass Awards 2012)

» full story

Feds set to require cloud vendor security certification

Starting June 6, FedRAMP demands pan-agency security verification before cloud providers can work with the government

» full story

Report: PHI security is MIA

According to "Breach Report 2011: Protected Health Information" by the IT security firm Redspin, 19 million patient health records were breached last year, a 97-percent increase from 2010.

» full story

Is your definition of security holding you back?

Without a clear definition of security that is consistent through out your team, how can you expect the people in your organization to comply? Michael Santarcangelo explains

» full story

How the Red Cross found its ID management groove

Red Cross CISO Suzanne Hall on the organization's monster effort to overhaul security and identity management.

» full story

» View all Compliance articles

COMPLIANCE ESSENTIAL READING

How do you write effective security policies and then ensure that employees are in compliance? Here is practical advice from the experts.

HP Converged Storage: Storage for the next era of IT
This white paper discusses how to combat this challenge with a converged infrastructure. Discover a system that can help you leverage this strategy and review the benefits it offers.
Bursting with HP CloudSystem
Read this white paper sponsored by HP and Intel® to learn how bursting can bring your business users and IT back into strategic alignment, as you jointly exploit new business opportunities enabled by private, public, and hybrid clouds.
Big Data, Big Risks, Big Rewards
Secure Your Data Before it's Too Late
Transforming SIEM into A Warning System for Advanced Threats
Given the state of today's security systems, most organizations are a long way from using these types of advanced technologies for security management. Security professionals need to get more value from the data already collected and analyzed.

» View All Compliance White Papers