technology

Order by:Group by:

Anti-Corruption, Competitive Practices, Employment, Environmental, Financial Assurance, Governance, Government Dealings (USA), Intellectual Property, Product Quality/Safety, Workplace Health/Safety

Mitratech

Competitive Practices, Information Management, Supply Chain Management (SCM)

CSO Security and Risk Magazine Archive

Competitive Practices, Financial Assurance, Governance, Information Management

GRC Technology Roadmap Teleconference: December 18, 2008

Employment

TechRepublic's 2008 IT skills and salary report
2007 Review of Payroll Systems: Keeping Ownership of the Client Payroll Relationship (2007)

Financial Assurance, Governance, Information Management, Intellectual Property, International Transactions, Supply Chain Management (SCM)

OCEG for Technology

Financial Assurance, Information Management

Glossary of GRC Terms from Financial Services Provider Perspective
SEC, Interpretive Release: Commission Guidance on the Use of Company Web Sites (2008)
Paisley Joins the Open Compliance & Ethics Group Technology Council
Audit Software Provider ACL Services Joins Open Compliance & Ethics Group Technology Council

Governance, Information Management

OCEG Critical Conversations Series: CIO at the Center (2007)
IT Governance Standard, ISO/IEC 38500:2008 Order Page (2008)
ISO/IEC 27006:2007 Order Page: Information technology -- Security techniques -- Requirements for bodies providing audit and certification of information security management systems (2007)
AS8015-2005 - Australian Standard for Corporate Governance of Information and Communication Technology (ICT)
Creating a Computer Security Incident Response Team: A Process for Getting Started (2002, Last Updated 2006)
Board Oversight of Information Technology - Data Privacy and Data Security: The New Imperative (2007)
Law Technology News

Governance

GRC Journal
Trust Services: A Better Way to Evaluate I.T. Controls (2005)
ISACA IS Standards, Guidelines and Procedures for Auditing and Control Professionals
Role Of Technology In Establishing A Grc Program, The (2008)
Using Technology to Enable Governance, Risk & Compliance Processes

Information Management

DHS, IT Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development (2008)
ISO 27001 - The Information Security Management Standard
IT Governance Defined
Sedona Principles
DIRKS
Enterprise Data Classification: A Distributed Problem Requires a Distributed Solution (2007)
GRC-XML Working Group Meeting #2 - February 13, 2008
2007 ITIL Glossary
Glossary of Terms from Compliance Spectrum
GRC Blueprint: February 2008 Working Group Meeting
GRC Ecosystem - February 2008 Draft from Corporate Integrity
GRC Ecosystem Components List - February 2008 Draft from Corporate Integrity
GRC-XML Working Group Meeting #4 - March 25, 2008
Red Book/GRC Ecosystem Functional Category Alignment - V 1.1
OCEG GRC Glossary - Draft 03-27-08
Q1 2008 OCEG Technology Council Roundtable
Taxonomy Work Group - Final Presentation before Blueprint Work Group Merger
GRC Technologies Glossary
OCEG Intellectual Property Agreement
IT Governance Institute's VAL IT Model Overview
GRC-XML Work Group Overview - June 6, 2008
Prepared for e-discovery: What to know about content monitoring and filtering (2008)
OCEG GRC Technology
GRC Blueprint Work Group Meeting - July 31, 2008
AICPA, Trust Services Principles, Criteria and Illustrations for Security, Availability, Processing Integrity, Confidentiality, and Privacy (Including WebTrust® and SysTrust®) (2006)
Achieving Data Privacy in the Enterprise (2008)
Information Technology Auditing and Cybercommerce: A Risk Perspective (2004)
World Data Protection Authorities
GRC-XML Work Group Meeting - September 2008
NIST, An Introductory Resource Guide For Implementing the Health Insurance Portability and Accountability (HIPAA) Security Rule (2008)
NIST, Information Security Handbook: A Guide for Managers (2006)
NIST, Performance Measurement Guide for Information Security (2008)
NIST, Guidelines on Electronic Mail Security (2007)
NIST, Computer Security Division, Computer Security Resource Center, Special Publications
SANS' Information Security Reading Room
Tools for Defense In-Depth: SANS What Works
Is Your Information Really Safe (2009)
Compliance Spectrum Announces OCEG Technology Council Membership
CA Joins OCEG as the Newest Member of the Leadership Council
MetricStream Joins OCEG as the Newest Charter Member
Matter Management Leader Mitratech Becomes Thirty-Fifth OCEG Technology Council Member
Governing for Enterprise Security Implementation Guide (GES)
NIST, Risk Management Framework
Convergence of Physical and Information Security in the Context of Enterprise Risk Management, The (2007)
NIST, Federal Information Security Management Act (FISMA) Implementation Project
Early Warning Signs of IT Project Failure: The Dominant Dozen (2006)
Security Matters, Software Engineering Institute, Carnegie Mellon University
IT Sentinel (UK)
Federal Information Security Management Act of 2002
Government of Canada Publications: IT Security Guidance (ITSG)
Information Security Forum
IT Security Portal
NIST, ITL Security Bulletins
Solving the Compliance vs. Mobile Dilemma (2006)
Compliance Provides Benefits Beyond The Obvious (2007)
Portable security: Full-disk encryption can take a lot of risk out of mobile computing (2007)
Guide to NIST Information Security Documents
EU, Promoting data protection by privacy-enhancing technologies (PETS)
Understanding The World Of E-mail: How It Can Significantly Increase Or Decrease The Costs Of Electronic Discovery - Part I (2007)
Understanding The World Of E-mail: How It Can Significantly Increase Or Decrease The Costs Of Electronic Discovery - Part II (2007)
FAQ: Changes to the Federal Rules of Civil Procedure Affect Storage Plans (2007)
Examining E-Discovery Chain of Custody (2007)
Group creates standard to ease e-discovery data transfer (2007)
E-discovery product purchase considerations (2008)
Court finalises e-discovery rules (2007)
Taking Control of Information: Managing Discovery (2007)
Disaster Recovery Planning for CIOs (2007)
How Vulnerable Is Your Information Technology? (2006)
Practical Disaster Recovery Planning: A Step-by-Step Guide
Survival of the Fittest: Disaster Recovery Design for the Data Center (2008)
Compliance Without Tears: Preparation can ease IT's compliance concerns (2007)
Email archiving UK law, regulations and implications for business (2007)
OCEG Critical Conversations: CIO at the Center
NIST, Computer Security Incident Handling Guide (2008)
United States Computer Emergency Readiness Team (US-CERT)
Six Steps to Better IT GRC (Treasury & Risk Magazine, June 2010)

International Transactions

Trade Finance 2007: An Abundance of Resources - Traders now enjoy multiple options in financing foreign transactions (2007)

Supply Chain Management (SCM)

Supply Chain Management - Business Weeks' Technology Research Library
Related communities
Technology Council