If you have WindowsXP systems and you also accept credit cards, you won’t be for much longer. The operating system that was once installed on more than 800 million computers is rapidly approaching its expiration date. Microsoft’s product support for WindowsXP finally ends April 8th, 2014 – FOREVER. It’s been estimated that WindowsXP currently resides on nearly 1 out of…
Archives.
“We don’t have enough resources to achieve compliance”
Thanks for stopping by for the next Compliance Myth! In the last post, Intreis Myth Busters tackled the myth “Technology will make us compliant”. In this 9th installment, we’ll challenge the often mistaken excuse “We don’t have enough resources to achieve compliance”. Sound familiar? It seems that the easiest response to meeting the compliance challenge is…
“Outsourcing a non-compliant process will make us compliant”
Intreis Myth Busters are back! We just wrapped up Compliance Myth #5 – “The ‘right’ policies and procedures will make us compliant”. This time we’ll cover why Outsourcing might not be the solution to all your compliance problems. This myth seems innocuous enough. You’re in an IT department and there are some things you just…
“The ‘right’ policies and procedures will make us compliant”
Thanks for stopping in for the next post from the Intreis Myth Busters! Last week we discussed why the attitude that “IT GRC is a necessary evil” could be harming your organization. Now we’re moving on to debunk “The ‘right’ policies and procedures will make us compliant”. Having the right polices in place can be…
“IT GRC is a necessary evil”
Intreis Myth Busters are on a roll! We just wrapped up ‘Compliance Myth #3 – “Compliance applies mostly to larger companies”’ and are moving on to our fourth myth. Let us tell you what is wrong with the statement: “IT GRC is a necessary evil”. One of the biggest misconceptions about IT Governance, Risk, and…
“You don’t get to pick your controls, your auditors do.”
Intreis myth busters are at it again! Last week we covered “We don’t store sensitive data” and we are moving on to debunk the myth “You don’t get to pick your controls, your auditors do.” Let us open your eyes… We are all adults, capable of critical thinking, but when it comes to our controls…
“We don’t store sensitive data”
Intreis Myth Busters are back to refute the myth “We don’t store sensitive data”! There are countless approaches for determining whether or not you store sensitive data. Ask 100 experts, and you’ll likely get 100 different recommendations on assessing whether you store sensitive data. Here is the simple approach I like to take: Step 1:…
Compliance Myth Busters Series Kick-off
“If you make a funny face, it might stick!” “If you swallow gum, it will stay in your stomach for 7 years!” “If you don’t behave, Santa won’t come this year!” “If you eat an apple seed, an apple tree will grow in your stomach!” I remember growing up and hearing myths like these. They…
5 Steps to PCI Compliance
I have been in IT long enough to remember punch cards and reel-to-reel tapes and I am sure I can find some still in my basement. While I have seen the remarkable advancement of technology and the consumerization of IT rapidly change the way we work, play and do business, I believe our management of…
Automating Business Continuity and Disaster Recovery Management on ServiceNow
As a ServiceNow GRC implementation partner, we have the opportunity to speak with customers about their Risk Management and Compliance initiatives. These conversations either start with, or lead to, conversations about the IT-GRC application in ServiceNow. Most customers don’t realize initially, that Business Continuity and Disaster Recover (BC/DR) is a natural extension of both IT…