Can you help with the following article? This article will be appearing in SC Magazine. SC features on specific technologies and trends are designed to inform IT security professionals about the state of the art in that area.
Deadline for leads is 15th May 2010. Email me or leave a comment below.
Making sense of compliance and governance
The fallout from the financial crash of 2007/8 has led to more compliance and legislation demands, much of which will be hitting enterprises in the next two years or so.
This feature will look at the developments that affect those information security professionals in finance, insurance retail and related sectors.
This feature will look at the developments that affect those information security professionals in finance, insurance retail and related sectors. It will look at the new wave of legislation that will directly affect the CISO and his/her department and the reasons why the legislation is coming in, not just in the banking sector and the financial services but elsewhere.
I'd like to speak to spokespeople about the following issues
- What are the actual types of legislation and compliance that are on the cards and how will information security professionals be expected to respond?
- The new powers of the information commissioner's office and how they will be enforced (will they be enforced?)
- PCI-DSS - will there be any modifications to this requirement and does anyone take it seriously - has anyone ever be fined for breaches
- The progress on a UK/EU Disclosure Law
- The pressures and dangers of processing, accessing and storing data across borders and in different clouds.
I'd also like to interview a compliance officer on the pressures of their job. Failing that, a legal expert who can talk through some of the best ways that enterprises can stay compliant in the new legislation heavy trading environment.
Leave a comment