All-in-One Guides:Compliance
Infosec-Related Regs
Breach notification regulations (SB-1386):
1 - 3 of 3-
Regulatory compliance: Sun shines on SB-1386
Tip - This case study reveals how Michelle Dennedy, Sun Microsystems chief privacy officer, tackled SB-1386 compliance by making it part of the corporate culture.
-
Compliance with California's new mandatory disclosure law, part two: Strategies for compliance
Tip - Tips for complying with California's disclosure law.
-
Compliance with California's new mandatory disclosure law
Tip - Learn everything you need to know about California's new disclosure law.
FFIEC:
1 - 0 of 0FISMA:
1 - 3 of 4-
Week 20: Beginning the dreaded risk assessment
Tip - In this week's column, Shelley Bard offers tips on how to perform a risk assessment.
-
FISMA essentials for information security practitioners
Tip - This tip provides an overview of the Federal Information Security Management Act (FISMA) and what information security professionals need to do in order to comply.
-
Industry Notebook: FISMA compliance made easier with SecureInfo's RMS
13 Apr 2004
Article - Upgraded risk management tool from SecureInfo Corp. and secured file transfers from Proginet among this week's product listing.
General:
1 - 3 of 9-
What to tell senior management about regulatory compliance
Tip - The IT Governance Institute offers actionable advice for implementing security governance as it relates to regulatory compliance.
-
Business continuity planning standards and guidelines
Book Chapter - An excerpt from Chapter 1: Contingency and Continuity Planning of "Business Continuity and Disaster Recovery for InfoSec Managers," by John W. Rittinghouse and James F. Ransome.
-
Getting your regulatory priorities in order
Tip - Learn five key elements to help you avoid trouble, expend the least amount of effort and ensure your priorities are on target and in order for your regulatory compliance projects.
HIPAA:
1 - 3 of 4-
Tip - A look at some of the HIPPA requirements.
-
HIPAA security rules explained
15 Mar 2005
Article - HIPAA's security rules at a glance.
-
HIPAA security rules apply to firms with healthcare plans
15 Mar 2005
Article - Enterprises don't have to work directly with patients to be affected by HIPAA's security rules.
PCI Data Security Standard:
1 - 3 of 6-
Checklist for meeting the PCI Data Security Standard
Tip - Contributor Diana Kelley summarizes the best ways to meet the PCI Data Security Standard.
-
PCI Data Security Standard: 12-step program for compliance
Information Security maga - Unlike some government regulations, the PCI standard is praised for its clarity. Here are the 12 basic requirements.
-
PCI Data Security Standard: Swiping back
Information Security maga - With the goal of reducing fraud, the credit card associations' PCI standard scores points for clarity.
Sarbanes-Oxley Act:
1 - 3 of 7-
Defining adequate security controls
Tip - Because of the changing nature of technology, the language in the Sarbanes-Oxley Act is purposefully vague. This article explores the meaning of adequate security controls and what is required for SOX compliance.
-
SOX 404 compliance: Efficiency is key
Tip - Gain a better understanding of SOX Section 404 and learn how to improve your compliance efficiency.
-
CSO INTERVIEW: Regulatory pain is a two-way street
30 Jun 2005
Interview - You might not expect someone from the agency enforcing the Sarbanes-Oxley Act to describe regulatory compliance as something bogged down with "bureaucratic overlap" that's "killing" enterprises. But that's exactly how Chrisan Herrod sees it. As CSO of...