Handling compliance and risk have become inescapable elements of the modern CIO’s role as they strive to ensure the business can forge ahead while not exposing areas of weakness or potential liability. Danny Bradbury explains the dilemma… Compliance can be a daunting word for IT managers. Ultimately, it’s about managing risk exposure at a broad level. So what can IT directors do to satisfy the rest of the board, especially given that regulations are mostly vague, principle-based affairs? Be thankful for vague rules. The few regulations that meddle with operational specifics aren’t generally helpful security guides, argues Michael Barrett, chief information security officer at PayPal. READ MORE
This entry was posted
on Wednesday, July 11th, 2007 at 9:25 am and is filed under Compliance Management, Risk Management.
You can follow any responses to this entry through the RSS 2.0 feed.
Responses are currently closed, but you can trackback from your own site.