Sarbanes Oxley Compliance Journal on Ulitzer

Sarbanes Oxley on Ulitzer

Subscribe to Sarbanes Oxley on Ulitzer: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Sarbanes Oxley on Ulitzer: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

For the past two years I have been predicting that M2M (machine to machine) communications will eventually become important and ultimately merge with enterprise mobility.  Why?  Both involve remote and often mobile sources of data coming into the enterprise. A few weeks ago, SAP made an announcement about M2M that I think is very interesting.  Here is an excerpt, "SAP today launched a new machine-to-machine (M2M) resource center with the Economist Intelligence Unit (EIU). The site features research and opinion from SAP, the EIU and other partners exploring successful M2M business models and scenarios."  I have also seen press about SAP's Mike Wendell, VP Industry Solutions, speaking at various conferences on the topic of M2M recently. In addition to reports, SAP has begun to partner with M2M solution providers like, ILS Technology. In fact, ILS Technology is at SAP's ... (more)

Across Continents, Close to the Chest

Data backup is typically the bane of most IT departments’ existence … a necessary evil, if you will. While it can often be a mundane process that’s a drain on IT resources, it is in fact a vital part of any company’s business continuity or disaster recovery plan, and often having a foolproof backup system in place is essential for complying with regulations like Sarbanes-Oxley and HIPAA. Throw in the fact that over 30% of a business’ critical data resides in remote offices and the challenge to carry out effective backup grows increasingly difficult. Data protection at remote offices using local tape-based backup solutions requires local staff to monitor the backup process, swap tapes and perform restores as necessary. Due to a company’s cost considerations, however, this local staff typically does not end up having sufficient ti... (more)

The Multi-Domain Registry/Repository

Frank Kenney from Gartner coined the term "Multi-Domain Registry/Repository", or MDRR, in a tweet recently. What is an MDRR and why is it important? To understand, think of a registry/repository traditionally seen as part of a SOA architecture. It is supposed to include addresses of the services available in the SOA, plus metadata about the services, such as their policies. Now think about how organizations are starting to rely on Cloud-based services, such as Amazon S3 (storage) and Force.com (sales force automation). These services are not on-premises SOA service, so they are not in the SOA registry/repository. But the organization relies on these services! This means that the registry/repository does not contain a full compliment of the services which are used by an organization. But wait, you may say, a SOA registry/repository is intended to manage and control ser... (more)

Moving to the Cloud: How Hard is it Really?

Cloud Computing Journal Many IT managers would love to move some of their applications out of the enterprise data center and into the cloud. It's a chance to eliminate a whole litany of costs and headaches: in capital equipment, in power and cooling, in administration and maintenance. Instead, just pay as you go for the computing power you need, and let someone else worry about managing the underlying infrastructure. But moving from theory into practice is where things get complicated. It's true that a new web application built from scratch for the cloud as a standalone environment can be rolled out quickly and relatively easily. But for existing applications running in a traditional data center and integrating with a set of other systems, tools and processes, it's not nearly so simple. What's really involved when moving an application from your enterprise data ... (more)

SAP Enterprise Mobility and the Gathering M2M Storm

As regular readers of this blog already know, I have been championing the convergence of enterprise mobility and M2M (machine to machine) for several years now.  Why?  M2M is mostly data collected in the field and wirelessly sent and integrated with back-end systems and ERPs.  That kind of sounds like enterprise mobility, right? As a manager, data collected from the field has value.  It can impact scheduling, resource allocation, planning, work dispatch and much more.  In today's world of M2M or "The Internet of Things" equipment, products and other assets can have embedded wireless chips connected to sensors reporting their status from just about anywhere. When machines report their own status, or measurements without humans in the loop, there are big savings. Today I read about Axeda and Globalsoft working together to integrate M2M solutions with SAP.  Very interes... (more)

Public GovCloud Computing – Assessing the Requirements

As more and more large enterprises start to make public adoptions of cloud and service providers figuring out the role they play in the market, one of the biggest potential cloud adopters has been watching and looking for signs that the market can support one of the most public facing cloud deployments. Yes, Governments have started to look at both private and public cloud offerings as potential solutions to address the changing needs of internal and external applications and processes. From a provider perspective, Governments are looking for services both for computing power and storage, as well as applications such as collaboration, CRM and email that can be used for public facing tools. A big force behind the cloud adoption in the US comes from the White House, which gave agencies the mandate to prioritize cloud applications and services when looking at building ... (more)

This Week in Cloud

This Week in Cloud on the go! Download the This Week in Cloud iPhone app. Now it’s even easier to get your weekly cloud news and perspectives. Cloud News A majority of companies reported that they are adding new types of skills and roles to their IT departments to handle their growing cloud requirements, according to this Forbes article. The data comes from a recent CompTIA survey which revealed the current skills that are in demand include private cloud developers and administrators, cloud architects, departmental liaisons, integration specialists, and compliance specialists. VMWare has acquired Nicira, a privately held company known for its software defined networking technology for $1.26 billion, according to this TechCrunch article. Nicira's open-source software creates a layer of abstraction between servers and networking gear, and allows for virtualized pools of... (more)

Training Center – Grand Opening Open House

Hurricane Labs and Information Security Summit are pleased to announce the Grand Opening of their new Corporate Training Center located at 4401 Rockside Road in Independence, Ohio. Featuring state of the art classroom technology, a large classroom for up to 30 students, 2 breakout rooms and a recording studio ideal for podcasting, the training center will be used by several hundred professionals from around the country. We offer a diverse array of training programs for Chief Security Officers, Security Managers, Network and Security Architects and Engineers, and other IT Professionals. We also provide ongoing learning experiences for a full range of employees within your organization to enforce security on all levels of the spectrum. Whether you are looking into firewall management or social media policies, we’ve got you covered. Our Training Center can accommodate ... (more)

Cloud Conversations: AWS Government Cloud (GovCloud)

Following earlier cloud conversations posts, cloud computing means many things from products to services, functionality and positioned for different layers of service delivery or capabilities (e.g. SaaS, AaaS, PaaS, IaaS and XaaS). Consequently it is no surprise when I hear from different people their opinion, belief or perception of what is or is not a cloud, confidence or concerns, or how to use and abuse clouds among other related themes. A common theme I hear talking with IT professionals on a global basis centers around conversations about confidence in clouds including reliability, security, privacy, compliance and confidentiality for where data is protected and preserved. This includes data being stored in different geography locations ranging from states or regions to countries and continents. What I also often hear are discussion around concerns over data f... (more)

Cloud Encryption and Healthcare “as a Service” Solutions

Healthcare “as a Service” providers are coming up strong in the market right now. It’s a growing segment, attracting a lot of interest from businesses and investors, but as expected, cloud security, and more specifically cloud encryption and HIPAA requirements, is critical customers considering a healthcare application as a service. In this article I’ll review some aspects as well as relate to data security solutions such as split-key management. Common aspects of Healthcare SaaS solutions Our recent conversations with Healthcare SaaS providers have highlighted several common aspects, across many solutions. Obviously, they all need to be “cloudy” (else they would not be SaaS providers). Their customer will access them through the web and their business model includes a pay-as-you-go component. They need their underlying infrastructure to support this model. Healthc... (more)

New "Try and Buy" campaign from Claranet on Virtual Data Centre offers free test drive of award-winning secure cloud sync and share service TeamDrive

Secure enterprise Dropbox-like service available across Claranet VDC in Germany Hamburg, 10th December 2012 - The managed services provider Claranet Germany has started a Virtual Data Centre (VDC) "Try and Buy" campaign for its TeamDrive file synchronization system. The campaign runs until 31 December 2012, and gives new subscribers the chance to try TeamDrive free of charge for a month. They will also receive a 10% discount on any additional 12 months subscription for the VDC resources. Claranet, the ISO-certified and award-winning managed cloud solution, allows companies to easily set up their IT infrastructure through a self-service portal, customizing and managing their IT resources to suit business needs. The new VDC integrated data synchronization and collaboration solution, TeamDrive, enables IT managers to provide secure information sharing. It is a practic... (more)