Gartner Blog Network

Erik T. Heidt
IoT Agenda Manager, Research Director
4 years at Gartner
23 years IT Industry

Erik Heidt is the Research Agenda Manager for Gartner for Technical Professionals (GTP). Mr. Heidt covers Internet of Things (IoT) architecture, IoT strategy as well as security and risk management within the IoT context. Mr. Heidt focuses on developing and delivering research related to the architecture, development and operation of IoT for both users and suppliers. Mr. Heidt has more than 24 years of IT industry experience, with a significant focus on information security and risk management. Read Full Bio

New Self-Audit Toolkit

by Erik T. Heidt  |  September 25, 2013

In “Achieving IT GRC Success“, Gartner recommended that enterprises consider six core activities in the Execution phase of the IT GRC practice. These included: Risk Assessment KRI Measurement and Management Ad Hoc Risk Decision Support Compliance Management Audit Support Policy Management There are many aspects of Audit Support that are discussed in the document, and […]

Read more »

Effective Selection and Implementation of IT GRC Solutions

by Erik T. Heidt  |  September 20, 2013

The basic question is, how do you select tools to support your IT Governance, Risk Management and Compliance (IT GRC) needs? This has been a major focus for my research over the last 10 months. The first phase of that exploration focused on defining a guidance framework that could be used to identify the IT […]

Read more »

Relativistic Control Theory

by Erik T. Heidt  |  September 19, 2013

A few weeks ago I had the pleasure of attending a roundtable of IT Risk Managers. Most of the participants were folks involved in day-to-day risk and governance in financial institutions. During one of the presentations there was an exchange that occurred between one of the speakers and myself, that has helped me to understand […]

Read more »

Raspberry PI & Securing the DIY Internet of Things

by Erik T. Heidt  |  September 3, 2013

(Note, if you know what a PI is and just want to jumpstart the security posture of your device, skip to How do I secure this thing?) What is a Raspberry PI and who are these Makers? You have probably heard a number of organizations discussing the “internet of things” or “industrial internet”, an emerging […]

Read more »

Add some IT GRC to your Catalyst! (or cloud, or crypto)

by Erik T. Heidt  |  July 18, 2013

Late breaking news: Just this week the opportunity to present an IT GRC session at Catalyst came up! As a result I will be presenting a 45 minute session discussing the most common struggles IT GRC practices experience organizing and executing their efforts. This is an outgrowth of the research conducted in authoring “Achieving IT […]

Read more »

Two Inconvenient Truths about IT Compliance

by Erik T. Heidt  |  May 17, 2013

I am very pleased to announce that my first document Achieving IT GRC Sucess has published this week and is now available to Gartner for Technical Professionals subscribers. The research and writing process led to many interesting conversations about governance, risk management and compliance with clients and colleagues. Let’s examine two “inconvenient truths” about IT compliance… […]

Read more »