| 
CM BlogsIT Compliance BlogZone

In the Compliance BlogZone you'll find discussions on personal experiences in concerning IT Compliance and Goverance and general non-sense. Share your comments freely with the Compliance bloggers and if you feel the urge to start your own blog please let us know.

 

Get the Feed | Subscribe by Email


Auditing information security Print
Written by Dan Swanson   

Auditing information security helps identify key improvement opportunities while studying leading audit guidance provides a better understanding of what the auditors are looking for, helping make audits more productive (a true win/win).

Taking the perspective of a board director will help focus your efforts on what the board is concerned about. Board guidance also tends to be very concise (very focused), i.e. they are great reports to study closely. Finally, getting your unplanned work under control will help make your life better, full stop.

Read More
Add Comment (0)
Hits: 396
 
Puzzling My Way Through Cobit 4.1 Print
Written by Bob Aiello   
The isaca Cobit 4.1 framework has 34 IT Processes which include a considerable amount of information on exactly how to establish effect IT controls and, more importantly, successfully meet your IT compliance requirements. Sadly, some managers look at this effort in terms of just simply "passing" an audit. It's my view that successful implementation of IT compliance is really all about changing the behaviors of the members of your team and achieving improved quality and productivity. So how does one go about doing that in the real world of today's challenging corporate environment. This blog will take a walk through each of the Cobit controls and discuss, in practical terms, how improved processes can be successfully implemented and supported. Obviously, this is not always easy and and I hope that you will read on and then drop me a line with your input on what works and what doesn't!
Read More
Add Comment (0)
Hits: 883
 
Reducing the cost of audit Print
Written by CM Staff   
Reducing your spend on regulatory audit costs Is spending on audit too high, and projected to climb further in the coming years? Are more audits required this year than two years ago? If you answer yes to these questions, you aren’t alone. While many firms continue to spend more on audit, others are actually spending less. The [...]
Read More
Add Comment (0)
Hits: 547
 
Executive Compensation Disclosure - Canadian Update for Fiscal Year 2008 Print
Written by CM Staff   
The Canadian Securities Adminstrators (CSA) are in the process of finalizing the expanded requirements for executive compensation disclosure associated with Form 51-102F6 Statement of Executive Compensation. The implementation date should begin with those issuers, excluding investment funds, with fiscal years on or after December 31, 2008.

This means there is lots more disclosure work ahead for about 3600 issuers on the TSX and TSX Venture exchanges.
Read More
Add Comment (0)
Hits: 585
 
IT GRC maturity FAQ Print
Written by CM Staff   
Q: How do you define IT GRC? Other than the three broad definitions contained in the research report (2008 Annual Report: IT Governance, RIsk and Compliance), all revolving around IT governance, risk management and compliance, we aren’t defining it. Rather, we’re letting the findings from the primary benchmark research going back almost two years, define what [...]
Read More
Add Comment (0)
Hits: 447
 
Does protecting customer data pay? Print
Written by CM Staff   
Does protecting customer data pay? We all sort of instinctively know that doing the right thing should result in better outcomes. This includes safeguarding and protecting customer data. The problem: unless it happened recently to you, no one could prove that it resulted in better business outcomes. Well, the evidence is in. Not only is protecting customer [...]
Read More
Add Comment (0)
Hits: 462
 
Executive Pay: In the News Print
Written by CM Staff   
With so much concern about the global economy right now, executive pay is a hot topic. What seems to be out of sync, is the high levels of executive pay when earnings or share prices of companies are collapsing. Investors wonder whose interests are being looked after.

2007 was the first year that US companies begin filing new Executive Compensation Disclosure and Related Person Disclosure information in the form a new section to the annual reports called Compensation, Discussion and Analysis (CD&A). The SEC has expressed displeasure at the filings and has requested improved reporting.

Canada has proposed similar legislation for 2008 for Canadian public companies which will put a bright light on this topic "up north".

An article from HR Executive Resource Online " Doubting Executive Pay" released yesterday sheds light on this topic and the investor and employee discord surrounding it. Here is an excerpt:
.
Read More
Add Comment (0)
Hits: 443
 
<< Start < Prev 1 2 3 4 5 6 Next > End >>

Results 1 - 7 of 37
[ Back ]

IT Compliance Zone is a microsite within the CM Crossroads community that provides resources and information about IT compliance. The IT Compliance Zone is a valuable resource bringing together articles, research, tools, events and other information that community members can leverage to improve their IT compliance practices and deliver software applications that meet the needs of their businesses.

Video News