Five Ways to Accelerate Your Path to Compliance

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7
Next Five Ways to Accelerate Your Path to Compliance-3 Next

Tactic #2: Do not ignore privileged accounts

Privileged accounts – those that grant system-level access – are THE primary sources of security breaches, and among the first places auditors look for compliance weakness. Because these accounts are all-powerful, absolutely necessary for system operation and management, and are not tied to an individual (i.e., they are most often shared across all administrators who must use them), privileged – or superuser – accounts are the primary target for the malicious activity that regulations seek to address.

Just because they’re privileged doesn’t mean they’re untouchable. Most data breaches we see are caused by insiders who exploit the privileged accounts only available to insiders. One of the most important things you can do to control access to privileged accounts is to eliminate the sharing of administrator passwords and credentials through technologies that enforce a policy-based request, approval, issuance, return, and resetting of administrative passwords.

Compliance demands are everywhere. In the past, only banks, publicly traded companies, and those in the health care industry needed to worry about compliance. Today, virtually every organization must deal with regulatory pressure in one form or another. Whether it’s government-mandated compliance such as SOX or HIPAA, industry-enforced regulations such as PCI DSS, or self-imposed controls such as ISO 27002, the alphabet soup of applicable regulations is growing, and the burden to satisfy these demands is becoming more and more challenging.

The logical reaction is to seek a line-by-line assessment of compliance (or non-compliance), often involving an auditor digging for a violation. If a violation is found, the organization is left scrambling to find a way to remediate the violation. Compliance doesn’t have to be complex or reactive. Dell Software’s Tim Sedlack and Todd Peterson suggest five simple tactics that – if followed – can dramatically improve an organization’s chances of passing its next compliance audit.


Related Topics : A Big Market for Big Data Jobs, Midmarket CIO, IT Management Automation, SharePoint, Technology Markets

More Slideshows

IT_Man89-290x195 9 Tips for Running a 'Tween' Company

Advice and tips for entrepreneurs and companies that are no longer startups but not quite ready for an IPO, also known as "tweens." ...  More >>

IT_Man88-190x128 Top 5 Trends Affecting Women-Owned Micro Businesses

Learn more about the challenges and opportunities presented to women leaders, especially micro-business owners. ...  More >>

Analytics21-190x128 5 Ways to Avoid Becoming 'Digital Prey'

Future IT leaders will need to seek technologies that eliminate silos in order to deliver the right information to the right person within the right application environment at the right time. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.