|Enterprise Architecture and Compliance News - RegWatch and Latest News|
Page 1 of 5
Mobile Security Technical Conference
Thursday Nov 15th 2012
8:30 am PST till 4:30 PM PST
Biltmore Hotel @ 2151 Laurelwood Road Santa Clara, CA 95054
Registration: Early Bird Registration (ends Nov 5th, 2012)
Please join us on Nov 15th for one day Mobile Security Technical Conference. Learn from the industry leader’s experiences and help create a secure mobile working environment for your organization.
Announcement for FedRamp
As of 9am on Wednesday, June 6th, 2012, the Federal Risk and Authorization Management Program (FedRAMP) Program Management Office (PMO) achieved Initial Operating Capability. As a part of IOC, the FedRAMP PMO is now accepting applications for provisional authorization of cloud systems. The application is currently housed on fedramp.gov and can be accessed via the following URL:http://www.gsa.gov/portal/content/125991
http://thegrcbluebook.com The GRC Blue Book is the world's largest database of risk and compliance applications. TheGRCBlueBook is the "Angie's List" of GRC vendor applications. Let's support our well respected colleague James Bone, who's done the homework for us but we must write the reviews!
James Bone President,
(Reminder to self, get listed in the BlueBook!)
If you are interested in what is going on in DC regarding cyber security legislation, here are two easy ways to check in:
National Public Radio’s “Morning Edition” airing about a 5 minute segment on the cyber bill on Tuesday, May 8th that will probably air at either 20 past the hour or 40 past the hour depending on when you receive the show in your area. I was interviewed for the story.
I also recently sat for an extensive interview with Richard Schlesinger, correspondent for CBS Evening News and EMC, addressing the cyber bills in Congress and how and why regulation will not effectively address our cyber security problems. That interview is available on the EMC website, just click on the link below.
Listen on playback. Conversation was outstanding!
For more information, please visit us at www.brighttalk.com, BrightTALK™, 501 Folsom Street, 2nd Floor, San Francisco, CA 94105
AuditNet® has developed an Audit Utilization of Technology Optimization Scale (AUTOS) to measure the maturity level of the use of audit technology by auditors. How would you rate your department on the use of audit technology?
Here are some of the key findings from other surveys on technology and internal audit1:
According to a recent survey by the Institute of Internal Auditors data mining and analytics are one of the top five skills sought for new internal auditors.
The 2012 Internal Audit Capabilities and Needs Survey by Protiviti reported that CAATs, continuous auditing and continuous monitoring are skills areas that auditors need to improve as the profession moves toward these approaches and techniques.
According to the 2011 TeamMate User Survey it is imperative that all auditors understand the technology tools available and use them on all audits.
The options available to CAE emphasize either hiring auditors with the technology skills to jump start implementation of technology initiatives which helps shorten the learning curve. Additionally providing staff with training for audit technology tools is a must.
According to the Grant Thornton 2012 CAE Survey … most CAEs seem to recognize that their departments can better harness the power of technology. Half of respondents acknowledged their organizations do not effectively use governance, risk and compliance (GRC)-specific technology. Data analytics and continuous auditing technologies are gaining wider acceptance, however. Still, given the power of today’s technology tools, internal audit can do more.
Also here is the link to the AuditNet® survey which will shed light on how auditors are using technology and how far they have to go to achieve the highest level of maturity.
2012 State of Technology Use by Auditors Survey http://svy.mk/JfsCMC
Also if you are looking for CPE then check out http://www.auditnet.org/ATI_ACLSO.htm
Working Effectively In Geographically Distributed Agile Project Teams
Geographically distributed agile is not an oxymoron. And, it sure isn’t easy. Each organization has its own unique culture, so you’ll have to find what works best for you. You need to start with the agile principles and values to derive your approach to distributed agile.
The good news is: You don’t have to do this alone!
Let Shane Hastie and Johanna Rothman guide you with the help of their two-day experiential workshop, Working Effectively In Geographically Distributed Agile Project Teams, April 17-18, 2012 . In the workshop, you will learn which kind of geographically distributed team you have, whether you are working on a project or a program, and which approaches might work best. You’ll experience planning and implementation on a distributed project, and we’ll examine how being human affects us all.
We’ll practice with iterations and kanban and see which—or both—might work best for you.
Come armed with your questions, we’ll make sure that we address the problems in the room. Want more information or to join us? See more or sign up here, http://www.jrothman.com/2012/01/working-effectively-in-geographically-distributed-agile-project-teams/
To see the video broadcast click here and register for the playback. You won't be cookied or profiled, and you'll love what you hear
EnterprisGRC Solutions consistently applauds Symplipfied's company's committment to education in identity. Forrester provides the speaker Eva Maler, who is a gem.
Got an issue or GRC event you want to promote? Talk2me. Chat back. Send me a tweet.
|Last Updated on Sunday, 21 October 2012 14:36|
Written by Robin Basham
Thursday, 01 December 2011 00:00
The GRC Buzz
Holistic Information Security Practitioner Institute (HISPI) welcomes EnterpriseGRC Solutions as member of their HISP Certification Board/Committee Read More
ITpreneurs is proud to name EnterpriseGRC Solutions as its newest certified partner. ITpreneurs and EnterpriseGRC Solutions will collaborate to increase Cloud and Virtualization concepts and controls, ISO 27001, COBIT and ITIL courses offered through EnterpriseGRC Solutions. “Every member of my organization has achieved at least one certification through ITpreneurs, and this is the second company that I’ve founded with that same promise. [...] It is a proud day, that we can be a part of ITpreneurs’ landmark efforts to bring forward CompTIA Cloud Essentials training and certification. - Robin Basham, Managing Partner.
Spontaneous Kudos - We've really been digging our digest from The Compliance Exchange
Partners and Client Information
Ryma Technology Solutions names EnterpriseGRC Solutions as an Affiliate Partner. More. Recent Wins: EnterpriseGRC Provides IS0 27001 Policy and SOA readiness for NetSuite Inc. EnterpriseGRC Solutions Sponsor to ISACA ITGI. Recent Partner Alignments include ITpreneurs, Control Solutions International
Request For Information? Please fill out our Wufoo form.