Regulatory Compliance and Security

There have been a number of reports stating concerns that IT's focus on regulatory compliance may harm its security posture. While there may be many groups concerned about this, we need to step back and realize that regulatory compliance is a risk to be managed just like any other and that many regulations require varying degrees of IT security.

Organizations face a great number of regulations that they must comply with and they don’t always agree with one another – especially when you cross country borders! The goal is not to be in 100% compliance – the goal of the organization is to make money in a sustainable manner. This creates a tension between them and when coupled with the human ability to be diverse, even when following standards, that pretty well guarantees organizations never will be in total compliance with all the laws and regulations they face. Regulatory Compliance and Security

Linked by shanmuga Friday, 16th December 2005 6:48AM