Applications

IT Governance and Compliance Topic Center

What you need to know about IT-related federal laws, regulations, compliance and more

New healthcare rule to cut red tape, save up to $4.6B, says HHS

The U.S. Department of Health and Human Services released a proposed rule change to the Affordable Care Act that it estimates will eventually save healthcare providers and payers $4.6 billion by simplifying administrative chores.
Read more...

5 signs that you've lost control over your cloud apps

CIOs are waking up to the reality that they've lost control over access to data stored in software-as-a-service applications purchased by other departments.

IETF explores new working group on identity management in the cloud

Proponents of a common scheme for managing user identity in cloud-based applications will pitch their idea to the Internet's premier standards-setting body at a meeting in Paris later this month.

Internet voting systems too insecure, researcher warns

Internet voting systems are inherently insecure and should not be allowed in the upcoming general elections, a noted security researcher said at the RSA Conference 2012 this week.

Supporters of SOPA, PIPA stick to their guns

Beleaguered supporters of two online antipiracy bills today downplayed widespread protests against the legislation and insisted the opposition is misguided and misinformed.

Facebook may take company public in May

Reports were circulating Tuesday that Facebook will launch its initial public offering in May.

Hospital electronic records adoption jumps, but still low

Hospitals that are prepared to adopt electronic medical records and achieve the government's "meaningful use" criteria have increased significantly, from 25% to 41%, according to new research.

Check Point buys compliance tech vendor Dynasec

Check Point Software is buying governance, risk management and compliance vendor Dynasec.

Accenture pays $63.7M to resolve gov't kickbacks case

Technology services and consulting company Accenture has agreed to pay $63.7 million to resolve whistleblower allegations that it participated in a large-scale kickbacks scheme involving U.S. government contracts.

New EU agency to manage large IT systems with citizen data

The European Union’s General Affairs Council on Monday approved plans to establish of a pan-European agency to manage its large-scale IT systems.

Security Manager's Journal: SOX is out of control

Complying with the act is consuming more and more time and detracting from real security work.

Public-sector cloud computing: The good, the bad and the ugly

From California and Utah to Ohio, Massachusetts and Maine, state and local governments are using the cloud to update antiquated systems, but the hurdles are high.

Governance at the speed of change

The right approach to governance -- using real-time metrics -- can enable more reliable applications, more agile IT, more satisfied business owners and, ultimately, happier customers. Insider (registration required)

The real force behind the consumerization of IT

You can blame the iPhone, Salesforce.com, and Facebook, but the truth is that business itself has driven the shift to employee-directed tech

Self-service IT: Are users up to the task?

Sure, today's end users are pretty tech-savvy, but do they have the technical and business chops needed to take full advantage of self-service technologies?

Feds Begin Race to the Cloud

Tasked with adopting cloud computing as a first option in all IT projects, federal agencies are grappling with the hard realities of making that policy work.

Linux at 20: New challenges, new opportunities

The rise of cloud computing and mobility could elevate the open source OS to a level of unprecedented dominance

5 reasons why SIEM is more important than ever

IT environments are growing ever more distributed, complex and difficult to manage, making the role of security information and event management (SIEM) technology more important than ever. Here's why.

10 hard truths IT must learn to accept

Unsanctioned devices, compromised networks, downtime -- today's IT is all about embracing imperfections.

Vulnerability analysis tools add compliance features

Compliance is a natural extension of a vulnerability analysis tool. Normal vulnerability scanning includes searching for unpatched systems, unprotected directories, and other errors in configuration.