Most Popular Stories
- Chrome 17's new features enhance speed, security
- 3 ways for CIOs to become business leaders
- Bug in Trendnet webcams exposes them to public viewing
- Spotlight: Intel launches 520 Series solid-state drive
- Apple's iPad 3 will be unveiled first week of March, says report
- FBI insists cloud providers meet strict security requirements
Events
- The AIIM Conference 2012
March 20-22, 2012 — San Francisco, CA - Ready to meet the next-generation of business?
March 4-6 2012 — San Francisco, CA - Northwestern University Master's in Information Systems
- Customer Engagement Technology World
March 28-29, 2012 — San Francisco
Sponsored Links
Free Newsletter
HOT TOPICS >> Tech world's top flops and fiascos of 2011 | Windows 8 slideshow | Cybersecurity | Caron's Q&As
INDUSTRY >> Healthcare IT | Government IT | Financial Services IT | Biotech IT | Compliance IT
Free Newsletter
FierceCIO provides CIOs with IT best practices, business intelligence, and forward-looking IT strategies. Join 32,000+ industry insiders who get FierceCIO twice a week via email and save time.
About | View Sample | Privacy
Latest News
Popular Topics
Whitepapers
- Whitepaper: Integrated Analytics and WCM Can Improve Performance & ROI
- 8 Critical Requirements for Secure, Mobile File Transfer and Collaboration
- Efficiency On Demand
- Enterprise Digital Assistant Leverage in the Emerging Mobile Enterprise
- Cloud Computing: Threat or opportunity for VARs and MSPs? Special focus on cloud collaboration and messaging
- Cloud Computing: How To Make Your Own Silver Lining
Compliance: More of an art than a science
Compliance with federal, state, and international privacy and security laws and regulations often is more an interpretive art than an empirical science, and is frequently a matter that requires negotiation. It's also more of an exercise in risk management than governance. Often, doing the right thing means doing what's right for the bottom line, not necessarily what's right in terms of regulations or even what's right for the customer. It's about trying to remain profitable while satisfying compliance requirements, and it's a delicate balancing act. When business metrics are applied to compliance, many companies decide to deploy as little technology or process as possible, or to ignore the governing laws and regulations completely. Complying with Sarbanes-Oxley is particularly confusing, and that frequently leads to non-compliance. Complying with privacy laws such as the Gramm-Leach-Bliley Act and HIPAA also are complex, and both leave a lot of room for interpretation. It's critical to document why your organization is approaching compliance with specific laws in specific ways. If you can show that you have read the pertinent regulations, can demonstrate that this is your interpretation of what the regulation says, and can show an intent to protect the data, you are more protected than those who haven't taken those steps. Do your homework so that you know if you're making the right trade-offs.
Read more about compliance:
- read the article at CIO
ALSO:
- read this on the intersection of risk and compliance
- this on flexible compliance
- and this on compliance taking a leap forward
Related Stories
- Making your customers happy
- Don't skimp on data management
- Flexible compliance saves time and money
- Powerful computing can light a fire
- Laptop recall hits everyone's bottom line
- Insourcing requires change management
- Email snooping on the rise
- Shift your priorities in this downturn
- A CIO with a $330 million budget
- Get up-to-speed on eDiscovery
Home
| Subscribe | Advertise | RSS |
Privacy
| Site Map
| EditorsTHE FIERCEMARKETS NETWORKFierceEnergy | FierceSmartGrid | FierceFinance | FierceFinanceIT | FierceComplianceIT | FierceHealthcare | FierceHealthFinance | FierceHealthIT | Hospital Impact | FierceMobileHealthcare | FierceHealthPayer | FiercePracticeManagement | FierceEMR | FierceCIO | FierceCIO:TechWatch | FierceContentManagement | FierceMobileIT | FierceGovernmentIT | FierceGovernment | FierceHomelandSecurity | FierceBiotech | FierceBiotech Research | FiercePharma | FierceVaccines | FierceBiotechIT | FiercePharma Manufacturing | FierceMedicalDevices | FierceDrugDelivery | FierceIPTV | FierceOnlineVideo | FierceTelecom | FierceEnterpriseCommunications | FierceBroadbandWireless | FierceDeveloper | FierceMobileContent | FierceWireless | FierceWireless:Europe | FierceCable© 2011 FierceMarkets. All rights reserved. |
![]() |




