Gartner Blog Network

Tag: 'compliance' Blog Posts

from the Gartner Blog Network

What Is In Your GRC "Junk Drawer"?

by John Wheeler  |  March 3, 2015

Everyone has one. Somewhere in their kitchen or garage is the infamous "junk drawer". Over time, the drawer fills up with gadgets, tools, scraps of paper with to do lists...

Read more »

Gartner Expands Coverage of GRC Technologies

by John Wheeler  |  January 21, 2015

Gartner's Chief of Research for Risk & Security, Paul Proctor, announced a year ago that Gartner had reset its approach for analyst coverage of Governance, Risk & Compliance (GRC) technologies....

Read more »

The Best Guarantors of Brand and Reputation Are Good People

by French Caldwell  |  May 1, 2014

Last week my colleagues Andrew Walls, Stessa Cohen and I published the "Regulated Social Media Survival Guide."  While not all enterprises have strict regulations that limit how they can use...

Read more »

Gartner Legal IT Scenario, 2020 - Smart Machines and LPO Radically Disrupt Legal Profession

by French Caldwell  |  February 28, 2014

The first ever Gartner legal IT scenario is out, and it's both controversial and not.  Many of the disruptions that we discuss in the scenario are well underway, such as...

Read more »

New FFIEC Guidance on Social Media Risk Management Effective Immediately

by French Caldwell  |  December 13, 2013

The final guidance from the FFIEC on social media risk management for financial institutions has been promulgated.  It is effective immediately.  As I mentioned earlier this year, regulatory guidance of...

Read more »

Summer of Cloud Incidents

by Jay Heiser  |  September 25, 2013

Although the actual events took place at widely varying times, the summer of 2013 has witnessed the public release of 3 major 'inappropriate use of the cloud' incidents. On July...

Read more »

Finally, PCI DSS In The Cloud Guidance

by Anton Chuvakin  |  February 12, 2013

As all of you already know, PCI Council has finally released an official  “Information Supplement: PCI DSS Cloud Computing Guidelines” [PDF] aka “PCI DSS in the cloud.” Here are some...

Read more »

Who Is Liable, and For How Much, When Your Third Party Isn’t Available?

by Business Continuity  |  February 4, 2013

Friday’s Bank of America outage reminded me of an increasingly frequent question we receive on third party liability due to an operating outage.  The use of cloud service providers is...

Read more »

A Really Helpful Regulatory Change Tool

by French Caldwell  |  October 26, 2012

One of the questions I get all the time is, “Where can I find what regulations apply to me?”  I talked this morning to Fred Diers who has created GRMpedia...

Read more »