REGULATIONS, LEGISLATION AND COMPLIANCE
Feature articles, profiles, columns and how-tos on understanding and complying with requirements involving corporate IT. From CIO magazine, CIO.com and sister publications.
Customs Rattles the Supply Chain
The government wants you to secure your supply chain. Right now, its program is voluntary. It won’t stay that way for long. And the responsibility for collecting the data Uncle Sam wants is going to fall on—you guessed it—the CIO.
Patchwork of Privacy Regulations
The growing number of discrete privacy regs makes for confusion. We need to define our terms and create a framework all of U.S. industry can adopt. (From CSOonline.com.)
Compliance Spending on the Rise
Despite current uptake of regulatory compliance programs being low, a MarketShare survey commissioned by Serena Software, covering 148 CIOs across Asia and Australia, showed that 75 percent of them ranked compliance as one of the top objectives for 2006. (From CIO New Zealand.)
Compliance: 10 Questions Your CEO Should Be Able to Answer
And you’re the one who has to make sure they can.
Building the Compliance Infrastructure
Service-oriented architectures have found their way to the network.
A blog post and readers comments on their experiences with IT audits.
Riding the California Privacy Wave
Wherever your business is headquartered, you have to deal with the new tide of legislation swelling out of the Golden State.
Federal regulations require an entirely new approach to story and searching e-mails. Noncompliance is not an option.
Regulation has come to town, and IT will never be the same.
Regulation has come to town, and IT will never be the same.
Know your company’s weaknesses before they do.
SARBANES-OXLEY
Our collected works on this influential act of Congress to regulate corporate governance.
How to Dig Out from Under Sarbanes-Oxley
Unless CIOs do Sarbanes-Oxley differently this time, it will cost even more money and cause even more pain. Here’s how to avoid all (or at least most) of that.
July 1, 2005 Sox Compliance Now Business as Usual
The effect of the Sarbanes-Oxley Act on IT budgets is receding, as compliance becomes just another cost of doing business, according to reports from AMR Research.
July 1, 2005 From the Publisher: Repeal Sarbanes-Oxley
Gary Beach says American companies are spending valuable resources on compliance rather than on competition.
April 1, 2005 From the Front Lines
The CIO Executive Council shares insights on Sarbanes-Oxley compliance.
February 1, 2005 The Sarbox Conspiracy
Sarbanes-Oxley compliance efforts are eating up CIO time and budgets. Worse, CIOs are being relegated to a purely tactical role. And that may be the CFO’s plan.
July 1, 2004 Sarbanes, Oxley and You
Fiona Williams, who is responsible for Deloitte & Touches security services practice for North America, answers questions about the Sarbanes-Oxley Act. (From CSO magazine.)
October 1, 2003 Finance Law May Force IT System Overhauls
A look at the key phrases in Sarbanes-Oxley that have potential IT implications. (From our IDG Enterprise Network partner, Computerworld.)
HIPAA
CSO sat down with Partners Healthcare CISO Bob Pappagianopoulos to talk about the mandate and its challenges. (From CSO magazine.)
June 1, 2005 Managing HIPAA’s Pain
Halfway between the deadlines for HIPAA’s privacy and security rules, health-care CISOs share compliance lessons for the rest of us. (From CSO magazine.)
April 1, 2005
PLAYING BY NEW RULES
CIO’s 2003 series, “Playing By New Rules: Your Risks and Responsibilities,” examines the federal legislation and regulation that profoundly affects how your company manages data, ensures security and protects privacy.
PART ONE
What to Do When Uncle Sam Wants Your Data
As the czars of data, CIOs better be prepared when the FBI knocks on their doors.
April 15, 2003
PART TWO
Your Risks and Responsibilities
You may think the Sarbanes-Oxley legislation has nothing to do with you. Youd be wrong.
May 15, 2003
PART THREE
Eight (Not So) Simple Steps to the HIPAA Finish Line
While much of the new security rule is common sense, meeting it by the 2005 deadline wont be easy. Heres a checklist to ease your heartburn.
July 1, 2003
PART FOUR
A Funny Thing Happened on the Way to Compliance (It Got Easier for CIOs)
Everyone thought the Sarbanes-Oxley financial disclosure act would require CIOs to perform heroic feats of integration, spend fortunes on software and invest enormous amounts of sweat equity. Now, with the law reinterpreted, only the last appears to be true.
December 1, 2003
OTHER RESOURCES
Full Text of the Sarbanes-Oxley Act
Sixty-six pages of fun (pdf).
Department of Health and Human Services
With access to full text of HIPAA law and other resources.