Offering regional and national programs, CIO (and CSO) events bring together some of the most respected names and thought leaders in information technology and security. Presented by CIOs and other senior level executives, these invitation-only programs offer timely topics and strong networking. Learn More »
Social Responsibility's Strategic Benefits
December 15, 11:30 AM - 12:30 PM US/Eastern (GMT-5)
Join Ed Granger-Happ, CIO of Save the Children, for a discussion of how creating an organization that is socially responsible improves staffing, retention, leadership development and overall corporate health.
Working With and Communicating to Your Board of Directors
January 13, 2009, 4:00 PM - 5:00 PM US/Eastern (GMT-5)
CIO panelists who will share tips and experiences working with their boards: Twila Day of SYSCO; Jeff O'Hare, West Corp.; Marc West, formerly with H&R Block.
IT's Role in Growing Mid-Market Companies
January 14, 4:00 PM - 5:00 PM ET (GMT-5)
Mid-market Council members will share their companies' stories and challenges in driving or coping with growth. Panelists represent Veterinary Pet Insurance, Medicis Pharmaceutical, and Intrax Cultural Exchange.
Learn more about the CIO Executive Council »
Apply today for a FREE subscription to CIO Magazine!
Legal Compliance and Data Security Go Hand in Hand
Companies that pass regulatory audits suffer fewer data losses
December 21, 2007 — CIO — Companies that pass muster in regulatory audits such as those for Sarbanes-Oxley also keep their data more secure, according to a study by the IT Policy Compliance Group. But these leaders are few.
Out of 454 companies, primarily in the United States, only 13 percent were found to be leaders when it came to protecting their corporate data—defined as companies that suffered three or fewer incidents of data loss or theft in a year. Almost all (96 percent) of these companies also came out nearly clean in annual regulatory audits, with three or fewer compliance deficiencies they had to address.
The reverse holds as well. Sixty-four percent of "compliance laggards" (companies with more than 16 compliance deficiencies) had the worst records for data loss and theft: more than 12 incidents a year.
IT provides the connection between compliance and data security. For 88 percent of companies considered "normal" or "lagging," the top 10 compliance deficiencies are mainly IT-related. These include insufficient system access controls, security policies and IT change management.
What are the leaders doing right? The study noted several common practices:
- Safeguarding IT security data is a top priority. Companies with the most data losses made protection of IT security information among their lowest priorities.
- Leaders assiduously document configuration and application changes.
- They spend more time trying to protect information and prevent data breaches.
- They also audit and assess their procedural and technical controls more often-on average, every 19 days.
- IT Careers: 7 Tips for Job Security in a Bad Economy
- Job Survival Tips: What To Do When You're Set Up for Failure, Before You're Fired
- When "IT Alignment with the Business" Isn't a Buzzword
- Slideshow: How to Set Your Facebook Privacy Settings
- How Nine IT Leaders Were Shaped by High School Experiences
FORTUNE 100 insurance leaders rely on the Symantec Data Loss Prevention solution to protect sensitive customer data.
Do you know where your confidential data is, where it is going, and how to prevent it from leaving your organization.
Learn what the thought-leaders at PricewaterhouseCoopers have to say on the risks associated with data security.
Incorporate best practices from many companies using DLP solutions as you establish your organization's requirements and safeguard confidential data.
35 U.S. organizations that lost confidential information and had a regulatory requirement to publicly notify affected individuals are studied in this report.
The Business Case for Web Application Firewalls, by Ken Tyminski, former VP and CISO for the Prudential Insurance Company of America
Quest Authentication and IBM Tivoli Identity Management
Integrating ActiveRoles With IBM Tivoli Identity Manager 5.0
Check Point Endpoint Security - Unifying Essential Components
Turn your information management best efforts into best practices.
Laptop Security: Where Do CIOs See Weaknesses?
Protecting Sensitive and Confidential Information with Endpoint Security
Revolutionizing Endpoint Security with a Single Agent
How RFID Improves Data Center Efficiency
Building Competitive Advantage with Next-Generation Wireless Infrastructure
Gartner on Data Deduplication Cost Savings
Into the Wild: Managing Laptops Outside the Office
Resource Alerts
Get instant email notifications by topic when white papers, webcasts, and case studies are added to our library.
Netbooks: Small, Cheap -- and Fast?
Clearwire, Sprint Close WiMax Deal
'Social Mobile' Applications: the Missing Book
Vista SP2 Due Next April, Says Report
Fear of More Attacks Could Hurt Business in India
London Hospitals Almost Back Online After Worm Infection
Google Earth Used By Terrorists in India Attacks
Microsoft and Yahoo Dismiss Report of Search Deal
China'S NetDragon Teams with EA on Online Game
Google Earth Used By Terrorists in India Attacks
Just the basics, please. Sometimes we all need a refresher or we need to make sure our team and our colleagues are all on the same page.
Over 25 tutorials on everything from business intelligence to virtualization.
- CIO|
- Computerworld|
- CSO|
- DEMO|
- Game Pro|
- Games.net|
- IDG|
- IDG UK|
- IDG Connect|
- IDG Tech Network |
- IDG World Expo|
- Industry Standard|
- InfoWorld|
- ITworld|
- JavaWorld|
- LinuxWorld|
- MacUser|
- Macworld|
- Network World|
- PC World|
- Playlist|
- CIO UK|
- CIO Germany|
- CIO China|
- CIO Sweden|
- CIO Australia|
- Other CIO Sites
