Posted on October 12th, 2009 by Jackie Gilbert
In less than three months, the new Model Audit Rule (MAR) will go into effect. Beginning January 1st, many non-public insurers will for the first time be required to comply with more stringent regulatory provisions, and public insurers that are already subject to SOX will be subject to additional reporting requirements. One key aspect of [...]
Filed under: Compliance, Identity Governance, Risk Management, SailPoint | No Comments »
Posted on August 11th, 2009 by Jackie Gilbert
One of the things I enjoy most about Burton Catalyst is the chance to hear first-hand from client organizations about their identity management deployments. For the most part, these sessions deal honestly with issues and challenges, are relatively hype-free, and focus on the pragmatic vs. the visionary. This year’s Catalyst featured an interesting set of [...]
Filed under: Compliance, Customers, Identity Governance, Identity Management, Role Management, SailPoint | No Comments »
Posted on July 23rd, 2009 by Darran Rolls
Building on Mark’s post from earlier this week, I want to add that I think the industry needs to get out of the mindset of thinking of “the business of identity” as an IT tools problem. For sure, provisioning has the potential to provide a consistent transactional “bus” for the identity change activity. But today’s [...]
Filed under: Access Request, Compliance, Identity Governance, Identity Management, Provisioning | No Comments »
Posted on July 20th, 2009 by Mark McClain
Last week, I was very pleased to see Burton Group publish a report entitled “Access and Identity Governance: Leading to Transparency and Visibility.” The report, authored by Gerry Gebel, describes how an access and identity governance layer has emerged to address enterprise needs for greater transparency, visibility and business controls. The report is notable in [...]
Filed under: Access Request, Compliance, Identity Governance, Identity Management, Provisioning, SailPoint | 2 Comments »
Posted on May 15th, 2009 by Darran Rolls
In his recent Network World column, “The Regional, Cultural and National Differences of Identity Management,” Dave Kearns discussed a panel he moderated at last week’s European Identity Conference: On a panel called “Is there a difference between the European way of doing IAM/GRC and the rest of the world?” I was quickly informed that, in [...]
Filed under: Compliance, Identity Governance, SailPoint | No Comments »
Posted on April 16th, 2009 by Kevin Cunningham
Verizon Business just posted the results of their 2009 Verizon Business Data Breach Investigations study this morning. This is Verizon Business’ second annual study, and it highlights some interesting – and unfortunately not surprising – statistics. Of the 285 million compromised records that Verizon studied, 93 percent occurred in the financial services sector (keep in [...]
Filed under: Compliance, Identity Governance, Risk Management | No Comments »
Posted on March 13th, 2009 by Kevin Cunningham
For the past several weeks, I’ve been racking up the frequent flier miles, canvassing the identity management marketplace and talking with customers from various industries and geographies. My overwhelming conclusion from these meetings is that the concept of identity governance has rapidly evolved over the last 12 months from an auditor’s concern to an urgent [...]
Filed under: Compliance, Customers, Identity Governance, Risk Management | 1 Comment »
Posted on February 2nd, 2009 by Jackie Gilbert
An article by Marcia Savage published in Information Security today caught my eye: “PCI Costs Slow Compliance Projects in Down Economy.” The article describes how in an economic downtown, financial services companies will look for ways to spend less (yes, less) on PCI compliance. Quoting commentary from Larry Ponemon (whose Ponemon Institute just released a [...]
Filed under: Compliance | No Comments »
