Gartner Blog Network

Category: 'compliance' Blog Posts

from the Gartner Blog Network

Auditing Is IGA's New Kid on the Block

by Brian Iverson  |  April 29, 2015

This is the tenth installment in a series of posts that I am writing on my impressions of the current state of IGA, based on analysis of the 2015 edition of the Critical Capabilities for Identity...

Read more »

IGA Appears to Be Making Progress Toward Business Enablement

by Brian Iverson  |  March 19, 2015

I facilitated an analyst-user roundtable during the just-completed European Gartner IAM Summit in London on the topic of "Selling IAM to the Business". Analyst-user roundtables are great opportunities for conference delegates who...

Read more »

Is IGA Ready to Fulfill Its Destiny?

by Brian Iverson  |  March 10, 2015

Account repositories continue to reign supreme when it comes to controlling users' access to applications and data. This has not changed appreciably since businesses started making extensive use of distributed information systems. Directory...

Read more »

Identity Governance and Administration: How We Got Here

by Brian Iverson  |  March 5, 2015

The roots of modern-day identity governance and administration (IGA) go back to user administration and provisioning (UAP), which emerged once organizations finally began to surrender the fantasy that directory services were going...

Read more »

The Best Guarantors of Brand and Reputation Are Good People

by French Caldwell  |  May 1, 2014

Last week my colleagues Andrew Walls, Stessa Cohen and I published the "Regulated Social Media Survival Guide."  While not all enterprises have strict regulations that limit how they can use...

Read more »

Security And/Or/Vs/Not Compliance?

by Anton Chuvakin  |  April 28, 2014

When I got this Gartner blog, I made a promise to myself to avoid rants, as a matter of personal policy. I’ve done my share of rants on my previous...

Read more »

If You Use Window XP - You Are NOT PCI DSS Compliant!

by Anton Chuvakin  |  April 10, 2014

It should be *painfully* obvious to anybody that in a few short weeks [or maybe now, depending on how you interpret it] any merchant using Windows XP systems or devices...

Read more »

#RSAC Buzz -- Regulators Raising the Bar on Vendor Risk Management

by French Caldwell  |  February 27, 2014

  [caption id="attachment_816" align="alignnone" width="572"] Vendor Risk Management Is Flashing Hot[/caption] I went to the RSA conference once  -- it was really busy and hearing from my buddies at the...

Read more »