IT systems not compliance ready

When it comes to compliance issues, many companies do not have the necessary IT infrastructure and are therefore unprepared for audits, regulator requests or even lawsuits, reports Industry Week.

A new study, "Compliance Enabled Enterprise (CEE) the Future: Building the Compliance-Enabled Enterprise", issued by the Business Performance Management Forum, found that less than half of IT executives consider compliance to be a "critical initiative with full management support" and 40% report their own company`s IT execs don`t understand current regulations well enough to effectively implement compliance technology and policies.

"This issue clearly represents a serious threat to corporate America: More than just a matter of building appropriate IT infrastructures and managing information, it represents the potential failure of top management to do the heavy lifting needed to achieve true compliance: locate resources, implement the right technology, develop viable policies and procedures, ensure enforcement," said Donovan Neale-May, executive director of the BPM Forum.

Trek to the summit

00Days

:

00Hrs

:

00Min

:

00Sec

Security vendor, McAfee, has entered the security risk management market, adding to its threat prevention product range with compliance management capabilities including remediation and network access control, reports iTWire.

With the acquisition and integration of Preventsys and SiteAdvisor technology, McAfee, claims to be the first security vendor to integrate threat prevention with compliance management.

"From conversations with our customers, it is clear that enterprises spend an enormous amount of time and money to manage security risks and to demonstrate compliance," said Steve Crutchfield, director of product marketing, McAfee.

An updated edition of the globally demanded IT Control Objectives for Sarbanes-Oxley was released by the non-profit, independent IT Governance Institute (ITGI), according to a Techwhack release.

The update is available as a complimentary download from ITGI`s Web site. The first edition of the guidance, published in 2004, has been downloaded more than 250 000 times.

Companies around the world have used it as a tool for evaluating IT controls in support of Sarbanes-Oxley compliance and other global financial reporting requirements.

The International Quality Productivity Centre will be hosting an IT governance summit in Miami next year, reports PR News.

Paul Preiss, president of International Association of Software Architects (IASA), will moderate a panel on "Addressing the realities of competitive success and acknowledging the challenges encountered before reaching victory".

Preiss says: "Governance is a critical issue for both IASA members, whose primary skill set must include governance management, and the IT community at large. The Internet bubble and the lack of well-crafted governance processes created an IT landscape filled with segmented solutions of varying levels of quality."