When it comes to anything related to governance, risk management and compliance (GRC), there’s always room for a lot of grousing. The two main issues, of course, are securing the cooperation of the parties involved and the reliance on a lot of manual processes to get the job done.
A survey of 191 GRC practitioners, conducted by the Ponemon Institute on behalf of the RSA unit of EMC, finds that a lack of resources and a lack of cooperation are the two biggest GRC impediments. But perhaps even more troubling is what appears to be a lack of faith in the IT tools available to help automate the process.
Of course, the one thing that everybody can seem to agree on is that the Payment Card Industry Data Security Standard (PCI DSS) is far and away the most difficult standard with which to comply. Whether that is a good or bad thing will naturally depend on your perspective.
Security Vulnerabilities at All-time Highs for Mobile Devices Mobile security recommendations for consumers and administrators.
Salary Negotiations: Insider Secrets Recruiter reveals insider's secrets to getting paid what you want.
Q1 Threat Report: Surge in Malware, Drop in Spam With six million unique samples of recorded malware, Q1 2011 was the most active first quarter in malware history.
Executives at several top tech firms outline the skills they need now and in the near future, including IaaS and IoT security expertise. Other skills listed may surprise you. ... More >>
Security professionals are in demand right now, and entry-level security jobs generally fall into either an engineer or analyst role. Find out more about required skills and career paths. ... More >>
Experts predict how cybersecurity will affect and involve our government, policies and politics in 2017. ... More >>