Sarbanes Oxley Compliance Journal on Ulitzer

Sarbanes Oxley on Ulitzer

Subscribe to Sarbanes Oxley on Ulitzer: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get Sarbanes Oxley on Ulitzer: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

The conventional view of cloud brokers misses the need to enforce policies and ensure compliance During a dinner at VMworld organized by Lilac Schoenbeck of BMC, we had the chance to chat up cloud and related issues with Kia Behnia, CTO at BMC. Discussion turned, naturally I think, to process. That could be because BMC is heavily invested in automating and orchestrating processes. Despite the nomenclature used (business process management) for IT this is a focus on operational process automation, though eventually IT will have to raise the bar and focus on the more businessy aspects of IT and operations. Alex Williams postulated the decreasing need for IT in an increasingly cloudy world. On the surface this generally seems to be an accurate observation. After all, when business users can provision applications a la SaaS to serve their needs do you really need IT? Ev... (more)

Sarbanes-Oxley: The New Rising Star

Ineffectual corporate management has given a great gift to programmers, system administrators, and CIOs - endless corporate accounting scandals. Our federal government has not missed this scandalous behavior as they have passed an extraordinarily strong, far-reaching law to contend with financial fraud. Officially it's called the Public Company Accounting Reform and Investor Protection Act, but it's more commonly know as the Sarbanes-Oxley Act. The Sarbanes-Oxley Act is a very special piece of legislation designed to keep corporate managers honest. The Act awards dishonesty with a 10- or 20-year prison sentence for CEOs and CFOs. In addition, it has a provision for taking any and all ill-gotten gains from the dishonest executive. There are approximately 14,000 publicly traded companies in the United States, with just about 7,400 of them traded on the New York, the ... (more)

Enterprise Cloud Computing: Sydney – February 13 – 14, 2014

Enterprise Cloud Computing: Sydney – February 13 – 14, 2014 Thursday February 13, 2014-Friday February 14, 2014 C C & C Solutions L20 Zenith Tower A 821 Pacific Highway Chatswood NSW 2067 Australia Price: A$1,045.00 (including $250 early discount) [converted to 958.76 USD] Offered in partnership with C C & C Solutions We offer additional discounts for groups of three or more people, government or non-profit employees, people who’ve taken a ZapThink class before, or individuals who are paying out of their own pocket. Please email us at [email protected] for a discount code you can use when registering. ZapThink Enterprise Enterprise Cloud Computing Course: The Leading Vendor Independent, Architecture-Focused Cloud Training The Enterprise Cloud Computing course an intensive, two day “fire hose” of information that prepares you to leverage the Cloud to achieve real business... (more)

Understanding the Fundamentals of Cloud Security for Healthcare

Continuing our discussion from my last blog in July, perhaps it’s helpful to drive deeper into security approaches and technology for use within clouds that serve the healthcare vertical.  We’ll start by focusing on the fundamentals of cloud security for healthcare.  However, some of this is transferable to other verticals as well. First fundamental: Understand the data that will reside in the cloud. Healthcare data has something in common.  It’s dangerous to manage, unless you know exactly what you’re dealing with. Cloud Security in Healthcare is no joke, but many of the best practices can be reapplied to other industries. As we migrate health data to the cloud, it’s important to understand the data that will reside in the cloud-based systems, in terms of compliance and security requirements.  This means understanding what is PII data, and what is not, as well as d... (more)

What Are the Cloud Computing Challenges and Risks?

Perhaps by now, after you have read the: - Cloud Computing, in Plain English, to IT Directors, VP's, CIO's and CEO's - Why Should IT Directors, VP's, CIO's and CEO's Care About Cloud Computing? - Cloud Equals SaaS, Grid, Utility Computing, Hosting...? - What Exactly is Cloud Computing? - Why Large Public and Private Sector Organizations (not just SMB's) Are Seriously Considering Cloud Computing? you may be asking the following questions, among many others: • Where is my data? • How does my data securely enter and exit the cloud? • How is my data protected in transit? • Who has access to my data? • Who is accountable if something goes wrong? • What’s the disaster recovery plan, including response to a pandemic? • How to comply with Export and Privacy laws? • Will my data disappear when my online storage site shuts down? • What happens if my cloud provider disappears? • How is the envi... (more)

Cloud Computing Challenges and the Balance Between Risks and Benefits

In the previous article we looked at some Cloud Security Advantages. Now let's now look at some Cloud Challenges. Cloud Challenges • Trusting vendor’s security model • Customer inability to respond to audit findings • Obtaining support for investigations • Indirect administrator accountability • Proprietary implementations can’t be examined • Loss of physical control; Data dispersal and international privacy laws • Need for isolation management • Multi-tenancy • Logging challenges • Data ownership issues • Quality of service guarantees • Dependence on secure hypervisors • Attraction to hackers (high value target) • Possibility for massive outages • Encryption needs for cloud computing Let's look depper into a few of the major concerns. How can you be sure your Data is Safe? Data safety in the cloud is not a trivial concern. Some online storage vendors such as The Linkup and Carbonite h... (more)

Citrix Makes Virtual Desktops Enterprise Ready

Citrix Systems today launched the new Citrix Ready Open Desktop Virtualization program to further accelerate large-scale enterprise virtual desktop deployments with Citrix® XenDesktop™. The Citrix Ready Open Desktop Virtualization program includes more than 10,000 products from over 200 vendors that have been validated as ready to deploy in production environments with the recently launched XenDesktop 4. The Open Desktop Virtualization program helps make virtual desktops a safe choice for enterprise-wide deployment by eliminating the guess work and ensuring customers that XenDesktop 4 has been tested to work with the software, hardware and services they already uses in their IT environments today. Products that have been verified to work with XenDesktop 4 include thousands of applications, servers, storage systems, backup solutions, client devices, printers, deskt... (more)

Surgient Launches Cloud Express to Help Enterprises Turn On Private Clouds

Surgient Session at Cloud Expo Surgient, a provider of private cloud automation for the enterprise, on Monday launched Surgient Cloud Express -- a new program that combines the best of cloud computing technology and implementation services to help organizations deploy on-premise clouds within 30 days. The offering is designed to help enterprises more quickly and easily experience the improved performance, provisioning, and security benefits private clouds can deliver. Surgient Cloud Express is available for $50,000 USD, and includes all the software, documentation and services needed to roll out a comprehensive private enterprise cloud environment on virtualized infrastructure. “A properly implemented private cloud is the key to solving costly IT service delivery challenges in the enterprise,” said Tim Lucas, president and CEO of Surgient. “This carefully designed ... (more)

ActiveState Launches Business Edition

Open Source Journal on Ultizer ActiveState, the dynamic languages experts, today launched ActiveState Business Edition, commercial-grade language distributions for Perl, Python and Tcl, providing organizations open source compliance, commercial support, and cross-platform access. "ActiveState has been a leading contributor in the open source community for years," said Bart Copeland, President and CEO, ActiveState. "With the launch of Business Edition, we can help companies deploying Perl, Python and Tcl in their business-critical applications, ensure open source policy compliance, minimize downtime and accelerate productivity cost-effectively. ActiveState's deep technical expertise is focused on keeping client systems, powered by dynamic languages, running smoothly, and making sure clients are in compliance with their open source policies." ActiveState Business Edi... (more)

Full speed ahead: FINRA social media regs remove “excuses for delay”

By D. Bruce Johnston, DBJ Associates Researchers and compliance officers are rallying around FINRA’s landmark 10-06 rule on social media-driven investment communications to give guidance to legions of newly energized investment marketers. Marketers rejoice: Hedges “We’re seeing new levels of enthusiasm among marketing communications project managers,” said Zach Hedges of Advisolocity recently. “Marketers on a tight budget see sunlight through the clouds.” He credits freeware networking site Linkedin, Twitter and WordPress for a lot of the investment marketers regained optimism. “They are  just glad they can start telling a story again. That’s all,”  he added. Financial research firm Nemertes signals happy days for thrifty marketers too in an online report: “The new guidelines bring clarity, but remove excuses for delay.” Without delay, it’s full speed ahead for SM... (more)

Olympic Cloud, CloudViews Unplugged, Cloud-Based EHR, and More...

This Week in Cloud on the go! Download the This Week in Cloud iPhone app. Now it’s even easier to get your weekly cloud news and perspectives. Cloud News IT spending is on the rise, according to this New York Times article. Recent figures published by Gartner state that IT spending will increase by 3% from 2011, more than was previously predicted. Cloud computing is one of the main contributors to the increased spending as more companies start to adopt the technology. Spending on public cloud services is predicted to rise from $91b in 2011 to $109b in 2012. Still, cloud services represent only a fraction of the $3.6 trillion that is predicted to be spent on IT in 2012. The Olympics may be the perfect event to showcase the power and scalability of cloud computing, but unfortunately, that won’t be happening in London this year, according to this ZDnet blog. CIO for the ... (more)