Posted on May 21st, 2013 by Kevin Cunningham
Does addressing risk-based security decisions for your organization mean that you are also compliant in the eyes of the auditors? This is a general question Ericka Chickowski addresses in her recent article for Dark Reading – “Mapping Compliance Proof To Risk-Based Controls.” It is a compelling article that addresses a debate our industry has faced [...]
Filed under: Compliance, Identity Management, Risk Management, SailPoint | No Comments »
Posted on April 24th, 2013 by David Strom
If your hospital emergency room is in beautiful downtown Burbank, California, chances are you are going to have some pretty well-known people walk in from the various movie and TV studios that populate the town. And, if you are the System Director of Enterprise Security for the company that owns that hospital, you have a [...]
Filed under: Compliance, Customers, Identity Governance, Navigate | 1 Comment »
Posted on November 15th, 2011 by Jackie Gilbert
As 2011 comes to a close, it’s time once again to plan for future IdM requirements and define budget needs for 2012. Based on today’s business drivers – from security and risk management, to increasing compliance requirements, to the need to streamline delivery of access to users across the business – many organizations are placing [...]
Filed under: Compliance, Customers, Identity Governance, Identity Management, Provisioning, Risk Management, SailPoint | 1 Comment »
Posted on May 10th, 2011 by Jackie Gilbert
Last week, the FTC announced that both Ceridian Corporation and Lookout Services, Inc. have agreed to settlements related to security breaches that occurred in 2009. In Ceridian’s case, the breach exposed the Social Security numbers and direct deposit information of roughly 28,000 individuals; the Lookout breach exposed the Social Security numbers of approximately 37,000 consumers. [...]
Filed under: Compliance, Identity Governance, Identity Management, Insider Threats/Security Breaches, Risk Management | No Comments »
Posted on May 5th, 2010 by Mark McClain
Last week’s oil spill has me thinking about how – and when – government regulation is the ideal path to mandate corporate governance. Specifically in the IdM space, I’ve watched government regulations evolve to address transparency, privacy and consumer data protection. As I look back at what’s happened, it’s apparent that most of these data [...]
Filed under: Compliance, Insider Threats/Security Breaches, Risk Management | 2 Comments »
Posted on April 22nd, 2010 by Jackie Gilbert
I read a very interesting Forrester report last week commissioned by Microsoft and RSA. It was based on a survey of 305 IT security decision makers and assesses data security practices at enterprises around the world. A key takeaway from the report is the fact that compliance, not security, drives security budgets. I don’t think [...]
Filed under: Compliance | No Comments »
Posted on March 22nd, 2010 by Mark McClain
This morning, we announced a next generation provisioning product that builds on the governance framework provided by our core product, IdentityIQ. The announcement is a culmination of almost two years’ work internally at SailPoint, and we believe it represents an evolutionary shift in the provisioning market that will benefit any company that is struggling to [...]
Filed under: Compliance, Identity Governance, Identity Management, Provisioning, SailPoint, Sun IdM Migration | 2 Comments »
Posted on March 4th, 2010 by Jackie Gilbert
This week, several members of the SailPoint team made the annual trek to the industry’s biggest security event, the RSA Conference. As always, the conference was a high-paced mix of conference sessions, technology debates, and meetings with customers and partners. I’m always interested in what themes get the most play at RSA. This year, I’d [...]
Filed under: Cloud Computing, Compliance, Insider Threats/Security Breaches, Risk Management | No Comments »
Posted on February 2nd, 2010 by Jackie Gilbert
Beginning in 2010, energy producers and distributors face a looming challenge – to become “auditably compliant” with the Critical Infrastructure Protection (CIP) standards by the July 1, 2010 deadline. Developed by NERC, an independent, not-for-profit organization whose mission is to ensure the reliability of the bulk power system in North America, and given the force [...]
Filed under: Compliance, Identity Governance, Identity Management, Risk Management, SailPoint | No Comments »
Posted on January 21st, 2010 by SailPoint
We recently conducted our third Market Pulse Survey, which focused on the key drivers of access certifications and how organizations ensure their access privileges align with business policy. According to the 150 respondents, including many readers of this blog, there is clear evidence business users involved in these processes don’t fully understand what they are [...]
Filed under: Compliance, Identity Governance, Identity Management, Insider Threats/Security Breaches, SailPoint | No Comments »
