November 19, 2008   Sign In |  About ebizQ |  Contact Us |  Join ebizQ Gold Club
Print this article    Email this article    Talk Back!    Write to Editor

Survey Finds Compliance Efforts Often Siloed

07/14/2008

Organizations are making progress in achieving regulatory compliance, but nearly 75 percent are either still treating each compliance regulation as an individual project or using manual methods to manage compliance, according to a survey on compliance progress and issues released today by Avior Computing Inc.

ADVERTISEMENT
Our Popular Webinars
Insurance: Discovering the Missing Link of Business Architecture
SOA Infrastructure for any economic climate
Adapt with Agility - Web 2.0 in your Application Infrastructure
Open Source SOA and the Management Challenge: The ROI and Reliability of Open Source Composite Applications
Guaranteeing Agility in SOA and BPM with Process-Driven Data Integration
More Webinars

ebizQ received the following:

The bi-annual survey of IT compliance and risk executives by Avior found that while some progress is being made on automating compliance processes, silos of compliance still exist in a majority of organizations, and these silos lead to inefficient compliance processes.


Learn how to defeat phishing, spam, and other new cyber threats at this Webinar.

Overall, the survey found that organizations are making progress in achieving compliance, but a surprisingly large number of organizations are either still treating each compliance regulation as an individual project, or using manual methods and tools to test for and manage compliance, or both. Key survey response findings include:

  • Organizations are still largely treating each compliance regulation as a separate project or silo. 43 percent of respondents are operating this way, while 28 percent indicate that they are working towards a unified compliance process, and another 28 percent have achieved a unified process.


  • Assessments are an area where some optimization needs to occur: 70 percent of responding organizations use separate assessments, one per regulation, while 30 percent are using a unified assessment spanning multiple regulations.


  • Spreadsheets and databases remained the most popular tools used to manage and track compliance, while compliance automation tools were used by 42.5 percent.



The full survey report is available upon request by sending an e-mail to info@aviorcomputing.com.

"It is not surprising that organizations continue to struggle with mapping of multiple regulations to common controls and to assessment questions" said Steve Katz, President of Security Risk Solutions, and former CISO of Citigroup, Merril Lynch, and JP Morgan. "Managing the compliance process with manual approaches will continue to be challenging for organizations with multiple regulations and standards."

Avior plans a follow-up survey in the fall of 2008 to explore some of these compliance process issues in more detail.

"This survey confirms what our customers tell us. IT organizations are besieged with compliance audits and reporting status requests. The stakeholders in the organization are experiencing survey fatigue from completing multiple overlapping assessments." said Steve McCalmont, Avior Computing CEO. "Our clients tell us that implementing leveraged approaches to compliance mapping and assessments allow them to be far more effective in their compliance processes, and to get more done with less manual labor."


More Top Stories
Identity Networking: Where Security and Compliance Meet Gold Club Protected
Get Smart About Database Security Gold Club Protected
SQL Injection Rears Its Ugly Head Again Gold Club Protected
Data Warehouses and Disaster Recovery Gold Club Protected
Expect the Unexpected with Data Security Gold Club Protected
Is Big the New Small in Application Security? Gold Club Protected
More Top Stories
Related News
Metastorm Growth and Leadership Continue
Micro Focus Upgrades Enterprise Integration Technology Products
Web Malware Jumps 21% In October
More News
Print this article    Email this article    Talk Back!    Write to Editor
Subscribe to our Newsletters
ebizQ Weekly Gold Club Update
Live Webinar Updates
Updates from ebizQ Partners
ebizQ SOA Update
ebizQ BPM Update
ebizQ Security Update
ebizQ BI Update
ebizQ Open Source Software Update
Virtual Show Newsletter
ebizQ Web 2.0 and the Enterprise
Your E-mail Address:


Mohan Udyavar SOA to the rescue - Maximizing your IT budget in a down economy

Playing LIVE in 3 minutes
Attend Now!
Visit Conference Home Page
Create a Center of Excellence in SOA Governance
Date: Dec 02, 2008
Time: 12:00 PM ET
(17:00 GMT)

REGISTER TODAY!
Next-Generation BI
Date: Dec 03, 2008
Time: 12:00 PM ET
(17:00 GMT)

REGISTER TODAY!
Archived Webinars | Upcoming Webinars
  BPMN and the Business Process Expert, Part 6: Choreography and Multi-Pool Processes
In addition to describing the internal process orchestration, or control flow, BPMN can represent choreography, the message exchange...Learn More
ebizQ also recommends
 Formalizing Operational Governance: Ensuring the well-managed enterprise
 15-Minute Guide to Transactional Content Management
 EMC Forges Ahead In Document-Centric BPMS, The Forrester Wave Vendor Summary
 The Forrester Wave: Business Process Management for Document Processes
 From Vision to Reality: Bridging The HR And Benefits Universe With The Employee Communications Platform
More White Papers

Marketing Solutions | Feedback | About ebizQ | Unsubscribe | Privacy Policy | Site Map

Live Chat