5 Smart Practices for IT Risk, Governance and Compliance
"What Sarbanes-Oxley did was really a copy of what the Securities and Exchange Commission was requiring the exchanges to comply with already," says Bernie Donnelly, vice president of quality assurance at the Philadelphia Stock Exchange.
Indeed, banks and securities firms had been dealing with similar regulations for years, so Sarbox was no big deal for them. But for the rest of corporate America, getting financial systems and processes in order was a massive undertaking.
"Most companies initially did their Sarbanes-Oxley compliance efforts with a lot of human beings, and now they are trying to automate these activities as much as they can," says John Hagerty, vice president of research for governance, risk and compliance at AMR Research. And while most large organizations have their Sarbox houses more or less in order now, concerns over governance, risk and compliance, especially as they relate to the role information technology plays, aren't likely to become any less critical any time soon.
CIO Insight talked with CIOs and other executives as well as several compliance experts to identify the technology smart practices companies should follow to improve their governance and risk management.
The Role of Standards in Cloud Security
Security is often cited as a primary cause for concern...Watch Now
Ensuring Resources for Mission Critical Workloads
Application workloads can thrive in cloud environments,...Watch Now
Improving Security in the Public Cloud
One of the main concerns about moving data to a public...Watch Now