technology

Order by:Group by:

OCEG Contributed

OCEG 2008 Benchmarking Series Report: Enabling GRC with Technology
What To Do When Your GRC Program Breaks
Building a Roadmap for GRC Technology Maturity
OCEG GRC Taxonomy Working Group monthly meeting
OCEG GRC-XML Working Group Monthly Meeting
Q1 2008 Technology Council Roundtable
OCEG GRC Blueprint Working Group monthly meeting
OCEG to Keynote ACL Connections 2008 User Conference
Join OCEG at Electric Utility Consultants' Enterprise-Wide Risk Management Conference
IMI Forums and OCEG to Share Technology Expertise at BFSI Forum
FAQ: Changes to the Federal Rules of Civil Procedure Affect Storage Plans (2007)
GAIT Methodology, The (IIA, 2007)
IT Governance Defined
OCEG CRITICAL CONVERSATIONS SERIES: CIO AT THE CENTER -Executive Summary
State of IT Auditing in 2007, The
Compliance Provides Benefits Beyond The Obvious (2007)
Court finalises e-discovery rules (2007)
Compliance Without Tears: Preparation can ease IT's compliance concerns (2007)
Portable security: Full-disk encryption can take a lot of risk out of mobile computing (2007)
Examining E-Discovery Chain of Custody (2007)
Group creates standard to ease e-discovery data transfer (2007)
GRC Journal
Disaster Recovery Planning for CIOs (2007)
Creating a Computer Security Incident Response Team: A Process for Getting Started (2002, Last Updated 2006)
OCEG GRC Blueprint Project Overview
FDA, Computerized Systems Used In Clinical Investigations (2007)
Q4 2007 Technology Council Roundtable
Board Oversight of Information Technology - Data Privacy and Data Security: The New Imperative (2007)
Assessing, Managing Enterprise Risk: What it takes to manage virtual servers (2007)
Taking Control of Information: Managing Discovery (2007)
Sedona Principles
DIRKS
Disaster recovery, backup, and restore: Big challenges for small businesses (2008)
Guide to NIST Information Security Documents
NIST, ITL Security Bulletins
Government of Canada Publications: IT Security Guidance (ITSG)
Information Security Forum
NIST, Federal Information Security Management Act (FISMA) Implementation Project
Federal Information Security Management Act of 2002
Security Matters, Software Engineering Institute, Carnegie Mellon University
Survival of the Fittest: Disaster Recovery Design for the Data Center (2008)
Practical Disaster Recovery Planning: A Step-by-Step Guide
GRC-XML Working Group Meeting #4 - March 25, 2008
Red Book/GRC Ecosystem Functional Category Alignment - V 1.1
IT Sentinel (UK)
OCEG GRC Glossary - Draft 03-27-08
Q1 2008 OCEG Technology Council Roundtable
2008 Technology Council Update
Taxonomy Work Group - Final Presentation before Blueprint Work Group Merger
GRC Technologies Glossary
OCEG Intellectual Property Agreement
IT Governance Institute's VAL IT Model Overview
GRC Roadmap<sup>TM</sup> Program Overview
GRC-XML Work Group Overview - June 6, 2008
Prepared for e-discovery: What to know about content monitoring and filtering (2008)
OCEG GRC Technology
GRC Blueprint Work Group Meeting - July 31, 2008
AICPA, Trust Services Principles, Criteria and Illustrations for Security, Availability, Processing Integrity, Confidentiality, and Privacy (Including WebTrust® and SysTrust®) (2006)
Trust Services: A Better Way to Evaluate I.T. Controls (2005)
Guide to Information Management: Data Classification, Search and Management (2008)
Achieving Data Privacy in the Enterprise (2008)
SEC, Interpretive Release: Commission Guidance on the Use of Company Web Sites (2008)
Information Technology Auditing and Cybercommerce: A Risk Perspective (2004)
World Data Protection Authorities
GRC-XML Work Group Meeting - September 2008
CSO Security and Risk Magazine Archive
IT Governance Standard, ISO/IEC 38500:2008 Order Page (2008)
ISO/IEC 27006:2007 Order Page: Information technology -- Security techniques -- Requirements for bodies providing audit and certification of information security management systems (2007)
AS8015-2005 - Australian Standard for Corporate Governance of Information and Communication Technology (ICT)
NIST, An Introductory Resource Guide For Implementing the Health Insurance Portability and Accountability (HIPAA) Security Rule (2008)
NIST, Information Security Handbook: A Guide for Managers (2006)
NIST, Computer Security Incident Handling Guide (2008)
NIST, Performance Measurement Guide for Information Security (2008)
NIST, Guidelines on Electronic Mail Security (2007)
NIST, Computer Security Division, Computer Security Resource Center, Special Publications
SANS' Information Security Reading Room
Tools for Defense In-Depth: SANS What Works
Email archiving UK law, regulations and implications for business (2007)
GAIT for Business and IT Risk (GAIT-R) (The IIA, 2008)
ISACA IS Standards, Guidelines and Procedures for Auditing and Control Professionals
Role Of Technology In Establishing A Grc Program, The (2008)
GRC Technology Roadmap Teleconference: December 18, 2008
Is Your Information Really Safe (2009)
OCEG One Minute Poll: What is Your Strategy for Compliance Training & Technology?
OCEG Critical Conversations: CIO at the Center
BWise Joins the Open Compliance & Ethics Group's Technology Council
Brabeion Software Joins the Open Compliance and Ethics Group's Technology Council
Ramco Becomes the Latest Global Organization to Join the OCEG Technology Council
MENTISoftware Becomes the Latest Member of the OCEG Technology Council
CA Joins OCEG as the Newest Member of the Leadership Council
MetricStream Joins OCEG as the Newest Charter Member
Matter Management Leader Mitratech Becomes Thirty-Fifth OCEG Technology Council Member
SAI Global Joins OCEG's Technology Council
OCEG GRC Blueprint Draft - V 0.4
GRC Technology Solutions Guide v. 2.1
OCEG for Technology
Enterprise Data Classification: A Distributed Problem Requires a Distributed Solution (2007)
E-discovery product purchase considerations (2008)
GRC Taxonomy Working Group Materials
GRC-XML Working Group Materials

Member Contributed

FFIEC, IT Risk Management Process
OCEG Illustrated Series: #3 IT Roadmap For GRC
Christiansen's IT Law: Information Law Theory and Practice
Computer Ethics
OCEG Illustrated Series: # 6 How Can Automated Controls Help Identify And Manage Risk?
Alan Calder on IT Governance, information security and ISO 27001
Data Auditing Blog
Architectural Risk Analysis (2005)
IT Security Portal
Research on Identity Management
OCEG Critical Conversations Series: CIO at the Center (2007)
Convergence of Physical and Information Security in the Context of Enterprise Risk Management, The (2007)
IT Toolbox Blog Page
Compliance and Security Connection
An Introduction to IT Governance (Paisley, 2006)
2007 Review of Payroll Systems: Keeping Ownership of the Client Payroll Relationship (2007)
Trade Finance 2007: An Abundance of Resources - Traders now enjoy multiple options in financing foreign transactions (2007)
United States Computer Emergency Readiness Team (US-CERT)
Early Warning Signs of IT Project Failure: The Dominant Dozen (2006)
Understanding The World Of E-mail: How It Can Significantly Increase Or Decrease The Costs Of Electronic Discovery - Part I (2007)
Understanding The World Of E-mail: How It Can Significantly Increase Or Decrease The Costs Of Electronic Discovery - Part II (2007)
Solving the Compliance vs. Mobile Dilemma (2006)
DHS, IT Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development (2008)
How Vulnerable Is Your Information Technology? (2006)
NIST, Risk Management Framework
Governing for Enterprise Security Implementation Guide (GES)
ISO 27001 - The Information Security Management Standard
Guide 6: Managing and Auditing IT Vulnerabilities (IIA, 2007)
Technology Council
Mitratech
Related communities
Technology Council