The Insider's Guide to Business and IT Agility
By Paresh Amin, Senior Director of Security and Compliance, Tizor , 04/16/2007
Print this article
Email this article
Talk Back!
Write to Editor
If you follow the news, you know that this is the era of data theft and data regulation. Incidents of mass identity theft occur on a regular basis and legislators have passed literally dozens of laws aimed at controlling how businesses handle sensitive data-financial, consumer and other. These are signs of changing times, where the definition of a valuable asset has evolved to include the information stored in business data centers all over the world. Data is not only an essential part of doing business in the twenty first century it also has a black market street value-like a precious stone or a luxury car, but much more portable. This street value is driving a new generation of thieves who target information from Social Security and credit card numbers to account numbers and passwords. Electronic information is at greater risk than ever before.
In response to this risk, information with any sensitivity or value is now being regulated. And regulation is forcing companies to pay close attention to information assets-including where they are and what is happening to them. The main demand that regulators are making is that businesses have enough visibility into information assets to know what's going on- so that they can identify when something goes wrong and have enough information to right it. In fact, visibility is the underlying requirement of every information protection law from SOX, the Payment Card Industry standard (PCI), Gramm-Leach-Bliley, HIPAA and the European Privacy Directive.
Complying with data-focused regulations has become a huge part of doing business and considering that virtually all corporate information is linked to IT systems and data stores, technology plays a huge role. Establishing adequate controls over what happens to critical corporate information is a major challenge, because businesses rely on easy access to data to stay competitive. Creating a balance between enabling business, through easy access to data, and protecting information, by making sure that only the right people access the right data for the right reasons, is the end goal.
So how do companies ensure data protection and privacy in the age of smart thieves and wider access to information in corporate data centers? The first step is to take a different view of data. Recognizing data as a critical corporate asset helps in visualizing how it should be protected. After all, every company has clear guidelines for how they should handle their money, including processes for who can access that money, and what they can and cannot do with it. In addition, they have processes for how those funds are tracked, documented and reported.
1
Best Practices in Moving Processes to the Clouds
How Can the Cloud Fit Into Your Applications Strategy?
Best Practices in Moving Data to the Clouds
The Economics of Cloud Computing
Data Services Insight: Successful implementation of Canonical Information Models
Identity Resolution: Technology Challenges and Strategic Imperatives for Insurance Industry Leaders 
Increasing Annuity Sales Through the Implementation of Industry Standards
From Agent to Carrier and Back: Why Life & Annuity Insurers Must Rethink the Data Journey
From Agent to Carrier and Back: Why Property and Casualty Insurers Must Rethink The Data Journey
How ACORD Can Be Used As A Best Practice For Data Integration
ebizQ is very interested in what you have to say. To contribute an article, an opinion, or to become a blogger, please contact Jessica Ann Mola.
Oct 28-29, 2009
SOA is ready for the business. But is the business ready for SOA?
Welcome to Service-Oriented Architecture, phase two. Six years after SOA first hit the mainstream, many organizations have achieved strong value, while some are struggling to realize business results from this increasingly popular approach to technology deployment. Some challenging hurdles remain in the "Increase SOA value to the business" journeyRegister
Date: Mar 25, 2010
Time: 12:00 PM
ET- (16:00 GMT)
Date: Mar 30, 2010
Time: 12:00 PM
ET- (16:00 GMT)
Date:Feb 10, 2010
Time:12:00 PM
ET- (17:00 GMT)
Date:Feb 02, 2010
Time:12:00 PM
ET- (17:00 GMT)
Is it possible for business users to design their own applications? Are Web 2.0 methods and mashups ready for the rigors of enterprise-scale...
Download Now
In part two of Joe McKendrick's recent podcast with Miko Matsumura, chief strategist for Software AG, they talk about how SOA and IT systems need to change and grow and adapt with the organization around it.
Listen Now
Phil Wainewright interviews David Vap, VP of products at RightNow Technologies, and finds out how sharing best practices can help businesses understand how best to engage with online communities.
Listen Now
Scott Hebner, Vice President of Marketing and Strategy for IBM Rational, discusses a topic on the top of every company's mind today: getting the most from IT investments.
Listen Now
In BI, this tough economy and the increasing role of Web 2.0 and MDM are certainly topics on people's minds today. WiseAnalytics' Lyndsay Wise addresses each of them in this informative podcast.
Listen Now
Deepak Singh, President and CTO of Adeptia, joins ebizQ's Dennis Byron in a podcast that gets its hand around the trend of industry-specific BPM.
Listen NowSmart event processing can help your company run smarter and faster. This comprehensive guide helps you research the basics of complex event processing (CEP) and learn how to get started on the right foot with your CEP project using EDA, RFID, SOA, SCADA and other relevant technologies. Learn More
A lot of people are talking about Enterprise 2.0 as being the business application of Web 2.0 technology. However, there's still some debate on exactly what this technology entails, how it applies to today's business models, and which components bring true value. Some use the term Enterprise 2.0 exclusively to describe the use of social networking technologies in the enterprise, while others use it to describe a web economy platform, or the technological framework behind such a platform. Still others say that Enterprise 2.0 is all of these things. Learn More
|
|
|
|
