by CIO Staff

Compliance 101: All You Need to Know

Mar 21, 20074 mins


Feature articles, profiles, columns and how-tos on understanding and complying with requirements involving corporate IT. From CIO magazine, and sister publications.

Customs Rattles the Supply Chain

The government wants you to secure your supply chain. Right now, its program is voluntary. It won’t stay that way for long. And the responsibility for collecting the data Uncle Sam wants is going to fall on—you guessed it—the CIO.

Patchwork of Privacy Regulations

The growing number of discrete privacy regs makes for confusion. We need to define our terms and create a framework all of U.S. industry can adopt. (From

Compliance Spending on the Rise

Despite current uptake of regulatory compliance programs being low, a MarketShare survey commissioned by Serena Software, covering 148 CIOs across Asia and Australia, showed that 75 percent of them ranked compliance as one of the top objectives for 2006. (From CIO New Zealand.)

Compliance: 10 Questions Your CEO Should Be Able to Answer

And you’re the one who has to make sure they can.

Building the Compliance Infrastructure

Service-oriented architectures have found their way to the network.

Surviving the IT Audit

A blog post and readers comments on their experiences with IT audits.

Riding the California Privacy Wave

Wherever your business is headquartered, you have to deal with the new tide of legislation swelling out of the Golden State.

Message Therapy

Federal regulations require an entirely new approach to story and searching e-mails. Noncompliance is not an option.

The Bitter Pill

Regulation has come to town, and IT will never be the same.

The Bitter Pill

Regulation has come to town, and IT will never be the same.

The Auditors Are Coming

Know your company’s weaknesses before they do.


Our collected works on this influential act of Congress to regulate corporate governance.

How to Dig Out from Under Sarbanes-Oxley

Unless CIOs do Sarbanes-Oxley differently this time, it will cost even more money and cause even more pain. Here’s how to avoid all (or at least most) of that.

July 1, 2005 Sox Compliance Now Business as Usual

The effect of the Sarbanes-Oxley Act on IT budgets is receding, as compliance becomes just another cost of doing business, according to reports from AMR Research.

July 1, 2005 From the Publisher: Repeal Sarbanes-Oxley

Gary Beach says American companies are spending valuable resources on compliance rather than on competition.

April 1, 2005 From the Front Lines

The CIO Executive Council shares insights on Sarbanes-Oxley compliance.

February 1, 2005 The Sarbox Conspiracy

Sarbanes-Oxley compliance efforts are eating up CIO time and budgets. Worse, CIOs are being relegated to a purely tactical role. And that may be the CFO’s plan.

July 1, 2004 Sarbanes, Oxley and You

Fiona Williams, who is responsible for Deloitte & Touches security services practice for North America, answers questions about the Sarbanes-Oxley Act. (From CSO magazine.)

October 1, 2003 Finance Law May Force IT System Overhauls

A look at the key phrases in Sarbanes-Oxley that have potential IT implications. (From our IDG Enterprise Network partner, Computerworld.)


HIPAA Compliance: Times Up

CSO sat down with Partners Healthcare CISO Bob Pappagianopoulos to talk about the mandate and its challenges. (From CSO magazine.)

June 1, 2005 Managing HIPAA’s Pain

Halfway between the deadlines for HIPAA’s privacy and security rules, health-care CISOs share compliance lessons for the rest of us. (From CSO magazine.)

April 1, 2005


CIO’s 2003 series, “Playing By New Rules: Your Risks and Responsibilities,” examines the federal legislation and regulation that profoundly affects how your company manages data, ensures security and protects privacy.


What to Do When Uncle Sam Wants Your Data

As the czars of data, CIOs better be prepared when the FBI knocks on their doors.

April 15, 2003


Your Risks and Responsibilities

You may think the Sarbanes-Oxley legislation has nothing to do with you. Youd be wrong.

May 15, 2003


Eight (Not So) Simple Steps to the HIPAA Finish Line

While much of the new security rule is common sense, meeting it by the 2005 deadline wont be easy. Heres a checklist to ease your heartburn.

July 1, 2003


A Funny Thing Happened on the Way to Compliance (It Got Easier for CIOs)

Everyone thought the Sarbanes-Oxley financial disclosure act would require CIOs to perform heroic feats of integration, spend fortunes on software and invest enormous amounts of sweat equity. Now, with the law reinterpreted, only the last appears to be true.

December 1, 2003


Full Text of the Sarbanes-Oxley Act

Sixty-six pages of fun (pdf).

Department of Health and Human Services

With access to full text of HIPAA law and other resources.