Latest Headlines

Latest Headlines

GRC tools: To integrate or not to integrate?

A new white paper from risk consulting firm Protiviti outlined several reasons why it's a good idea to bring an assortment of compliance functions together under one umbrella instead of letting them languish across teams and work processes.

Microsoft takes compliance to Outlook public folders

Microsoft is extending its compliance tools to so-called public folders in Outlook.

Smarsh Personal Archive helps workers manage their own email storage

Many e-discovery and compliance policies place the burden of their management on the IT department. Cloud-based archiving vendor Smarsh announced the release of a new product that helps workers manage their own email archives without leaning on IT more than they need to.

Roadblocks to widespread BYOD adoption

While many companies have embraced BYOD as a way to improve employee productivity and mobility, others- particularly outside of North America- have dragged their feet or even actively prohibited BYOD for their employees. A recent BetaNews article identified a number of obstacles to broader adoption of BYOD.

Workiva launches cloud-based tool for Sarbanes-Oxley compliance

Wdesk, Workiva's cloud-based business reporting tool, has a new feature designed to help companies with Sarbanes-Oxley compliance. Evidence Management for Wdesk allows internal auditing teams to annotate documents for a thorough audit trail.

Verizon study: The fault is not in PCI DSS but in the merchants themselves

The recent rash of credit and debit card breaches at retailers and other merchants, many of whom sign onto the PCI Data Security Standard for payment card security, has some security analysts questioning the effectiveness of that standard.

Spotlight: The info governance death rattle

E-discovery attorney Ralph Losey suggests information governance as we know it has about another five to ten years of life left in it before it's no longer worth the trouble. 

Dropbox receives good ISO 27001 grades from Ernst & Young

The safety of the service most often cited as the culprit behind "shadow IT" is looking better after one of the world's best-known accounting firms clears it for international certification.

IT downtime from attack or infrastructure failure can cost firms more than $1M per hour

IT downtime caused by an attacker or non-malicious infrastructure failure can cost firms more than $1 million per hour, as well as increase data security risks, according to a survey of 283 IT professionals and end users by security firm Globalscape.

State of the Cloud report: 'Cloud security concerns are abating'

The longer an enterprise maintains a cloud deployment--be it public, hybrid or private--the less worried it becomes, not only about security but everything else, according to the latest survey numbers from RightScale.