Public Company Accounting Reform and Investor Protection Act

Compliance Journal

Subscribe to Compliance Journal: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Compliance Journal: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

For most organizations, the move to hybrid cloud is now a question of when, not if. Fully 82% of enterprises plan to have a hybrid cloud strategy this year, according to Infoholic Research. The worldwide hybrid cloud computing market is expected to grow about 34% annually over the next five years, reaching $241.13 billion by 2022. Companies are embracing hybrid cloud because of the many advantages it offers compared to relying on a single provider for all of their cloud needs. Hybrid offers balance and flexibility. It helps companies achieve a wide array of business goals, including availability, reliability, security and cost-efficiency. Still, there are a number of challenges associated with hybrid cloud. Here are four management issues that companies need to address to enjoy a successful hybrid cloud implementation. Managing complexity. More clouds can sometime... (more)

Multi-Cloud Movement | @CloudExpo @VMware #DataCenter #Compliance #DigitalTransformation

Keeping Pace with the Multi-Cloud Movement A common misconception about the cloud is that one size fits all. Companies expecting to run all of their operations using one cloud solution or service must realize that doing so is akin to forcing the totality of their business functionality into a straightjacket. Unlocking the full potential of the cloud means embracing the multi-cloud future where businesses use their own cloud, and/or clouds from different vendors, to support separate functions or product groups. There is no single cloud solution ideal for all applications, and some applications might not fit the cloud at all. For example, certain applications have more stringent security or compliance requirements that require a private cloud or traditional on-premises deployment. For the foreseeable future, the majority of companies will maintain a hybrid cloud env... (more)

DivvyCloud to Exhibit at @CloudExpo NY | @DivvyCloud #Security #Compliance

SYS-CON Events announced today that DivvyCloud will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. DivvyCloud software enables organizations to achieve their cloud computing goals by simplifying and automating security, compliance and cost optimization of public and private cloud infrastructure. Using DivvyCloud, customers can leverage programmatic Bots to identify and remediate common cloud problems in real time. DivvyCloud was founded by seasoned technologists who understand first-hand what is necessary to succeed in today's fast-changing, multi-cloud world. For more information, visit https://divvycloud.com/. The World's Largest "Cloud Digital Transformation" Event @CloudExpo / @ThingsExpo 2017 New York (June 6-8, 2017, Javits Center, Manhattan) @CloudExpo / @ThingsExpo 20... (more)

Choosing Your Mobile Device Management Solution | @CloudExpo #Cloud #Compliance

10 Things to Consider As You Choose Your Mobile Device Management Solution By Nikhil Nayak, Product Analyst, ManageEngine The past decade has seen an increasing trend in employees using mobile devices like smartphones and tablets to aid in their work. This trend has fostered organizations to adopt practices like bring-your-own-device (BYOD) with hopes of improving employee productivity and efficiency. There is, however, a downside to this because such practices pose major risks concerning corporate data security and data management. In order to ward off these risks, enterprises seek out reliable mobile device management (MDM) solutions. There are many solutions out there, but selecting the right solution for your enterprise may seem challenging - especially if you're not aware of what to look out for. Here is a list of 10 things to consider as you choose your MDM so... (more)

Evaluating Hybrid Cloud | @CloudExpo #SDN #DataCenter #Compliance

Bringing Sanity to Evaluating Hybrid Cloud Technology is advancing at a rapid pace. To keep up, organizations must now take more strategic approaches to their business management solutions that support respective requirements. Today, in every organization, conflicting interests, misinformation, and fear of change make it difficult to know how to navigate the cloud safely. That's why, when making a sensible technology plan for the times ahead, it's crucial to ask the following questions to wade through the confusion. 1. What regulatory requirements govern your data? Understanding the state and federal compliance requirements that apply to one's business data is a process, not an event. Data protection requirements are increasingly strict, while enforcement penalties are on the rise. That's why businesses need to define and document specific compliance requirements. O... (more)

CI/CD Pipelines | @DevOpsSummit #AI #ML #CI #CD #DevOps #Monitoring

For a while already we have been working with a large enterprise client, helping them to migrate their on-premise workloads to the cloud. Of course, as added value to the process, they are also migrating their legacy development processes to the modern, better, agile DevOps approach. And of course, they have built a modern Continuous Integration/Continuous Delivery (CI/CD) pipeline consisting of Bitbucket, Jenkins, Artifactory, Puppet and some relevant testing frameworks. “It is all great!”, you would say “what is the problem?”. Because I am on all kinds of mailing lists for this client, I noticed recently that my dedicated email inbox started getting more and more emails related to the CI/CD pipeline. Things like unexpected Jenkins build failures, artifacts cannot be downloaded, server outages and so on and so on. You already guessed it – emails that report proble... (more)

Big Challenges of #BigData | @CloudExpo @Gemalto #Security #AI #ML #DL

Download White Paper ▸ Here Between 2005 and 2020, data volumes will grow by a factor of 300 - enough data to stack CDs from the earth to the moon 162 times. This has come to be known as the ‘Big Data' phenomenon. Unfortunately, traditional approaches to handling, storing and analyzing data aren't adequate at this scale: they're too costly, slow and physically cumbersome to keep up. Fortunately, in response a new breed of technology has emerged that is cheaper, faster and more scalable. Yet, in meeting these new needs they break many of the traditional security approaches on which enterprises depended. In these massive data volumes, how are organizations going to ensure that their customer information is safe from people looking to exploit it? Is it possible to adopt Big Data technologies while demonstrating compliance with industry regulations? Will security get i... (more)

[slides] Secure Cloud | @CloudExpo @SearchYourCloud #Security #Compliance

Download Slide Deck: ▸ Here Download Slide Deck: ▸ Here Staying Secure and Organized in the Cloud As companies adopt the cloud-to-streamline workflow, deployment hasn't been very seamless because of IT concerns surrounding security risks. The cloud offers many benefits, but protecting and securing information can be tricky across multiple cloud providers and remains IT's overall responsibility. Download Slide Deck: ▸ Here In his session at 19th Cloud Expo, Simon Bain, CEO of SearchYourCloud, addressed security compliance issues associated with cloud applications and how document-level encryption is critical for supplementing existing enterprise security solutions. He drew from case studies, outlined best practices for businesses and demoed how data can be transported and stored to and from the cloud already encrypted and securely accessed no matter where it’s sto... (more)

[session] Enabling #FinTech | @CloudExpo @CloudRaxak #AI #ML #Blockchain

Enabling FinTechs for Success through Business-Driven Cloud Security FinTechs use the cloud to operate at the speed and scale of digital financial activity, but are often hindered by the complexity of managing security and compliance in the cloud. In his session at 20th Cloud Expo, Sesh Murthy, co-founder and CTO of Cloud Raxak, will show FinTechs how proactive and automated cloud security enables FinTechs to leverage the cloud to achieve their business goals. Through business-driven cloud security, FinTechs can speed time-to-market, diminish risk and costs, maintain continuous compliance, and set themselves up for success. Speaker Bio Sesh Murthy is the Co-Founder and CTO of Cloud Raxak. Before Cloud Raxak, he was the Vice President of Cloud Innovation at IBM Global Services. He has 29 years of experience in creating value for customers in cloud and technology se... (more)

Three Steps to Painless Compliance | @DevOpsSummit #DevOps #BusinessIntelligence

Three Steps to Painless Compliance By Patrick Bishop Ask any IT person from the financial sector about SOX requirements and they’ll probably use some colorful language about how much time and money it sucks away. According to the 2016 Sarbanes-Oxley compliance survey by global consultant Protiviti, the average annual internal cost of SOX Compliance Costs is over $1.2 million dollars, with 27% of these firms spending 2 million or more. Having worked with lots of financial institutions in my time, I’ve seen my fair share of IT people feeling overburdened by the demands of keeping up with regulations. Documenting processes and changes, ensuring segregation of duties, and so on is tedious and time-consuming. To be effective and lighten the compliance load you need automation, yes, but you also need intelligence about what’s happening across your pipeline. Release orche... (more)

What the Business Doesn’t Know Will Hurt

Imagine you work at a company preparing to issue its quarterly earnings report. The phone rings. It's bad news. A coworker has discovered that a former employee has been logging into the company's network for months. It's unclear whether the former employee has used this illicit access to make any buy-loss orders without proper authorization, but the damage has been done. The company is required to force the release through the business channels, halt its stock sales and make the dreaded phone call to the SEC alerting them to the possibility of insider trading. The company must announce its report before it's ready, and is forced to absorb any market blows that result. Who's watching the shop? Most of a company's line of business (LOB) or human resources (HR) leaders are not tasked with worrying about identity and access management (IAM); that is, the processes by w... (more)