Governance News & Articles

PCI (Payment Card Industry) compliance standards protect personal information and ensure security when transactions are processed using a payment card. Thanks to ClearPoint Metrics new PCI compliance management solution, organizations can manage PCI compliance risk more effectively, and reduce the cost of auditing and reporting.

The new metrics-based PCI assessment application will be delivered as Software-as-a-Service (Saas) on the Amazon cloud.

This week in GRC focuses on the many challenges 2010 poses for companies, in regards to spending, compliance and risk management.

The Gilbane (news, site) San Fransisco conference is a few months away, but things are already starting to take shape. Depending on your area of interest -- web content management, enterprise content management, internet, intranet -- there will be something new for you to learn.

The pre-conference workshops have just been announced, here's a look:

• Insider's Guide to Selecting WCM, Collaboration, and Social Software: Join Tony Byrne of CMS Watch to get a better understanding of the converging marketplace, who the key players are and how to traverse the roadmap to making the right technology/vendor decision for your needs.
• Learn to Develop an Actionable Intranet Strategy: Scott Liewehr, a Gilbane senior analyst, will take you through the steps required to build an actionable intranet strategy
• Managing Smart Content: How to Deploy XML Technologies across Your Organization: In this workshop, Gilbane senior consultant Dale Waldt and other members of the Gilbane practice on XML technologies will talk about their XML experiences and provide practical usage strategies.
• A Methodology for Web Governance: Christine Pierpoint of WelchmanPierpoint, will guide you through the component of a Web governance lifecycle, take a look at the steps to create a Web governance framework and discuss best practices and model.

You can also take a closer look at the conference schedule which is broken down into tracks for Colleagues and Collaboration, Content Publishing, Customers and Engagement, and Content Technology.

The Gilbane San Francisco conference takes place May 18-20, 2010 at the West Market Street Hotel in San Francisco. Registration is open and every Conference Plus Package comes with a free Kindle.

Amongst the many releases from Autonomy (news, site) this week is a consolidated email management and archiving solution that will cover all the email requirements of small and large enterprises in terms of management, eDiscovery and governance.

Cloud computing has been the hot new thing on the market for a while now. It’s what has the enterprise buzzing and apprehensive. It’s what has those in charge of governance concerned. Overall, working in the cloud is the best and worst thing that ever happened to the enterprise.

How one uses the cloud is most dependent how compliant you intend to be. Once you understand the individual compliance regulations and specific requirements, it’s likely that you (and your data) can live comfortably on the cloud.

Back in December we remarked about the trouble with generic acronyms and what they contribute (if anything) to web content management.

This year the same argument unfolds around another acronym, GRC. On the Gartner Blog Network, French Caldwell recently wrote about the war on governance, risk and compliance.

"How do you like your SharePoint? Combo 1? Team site template with Wikis, Surveys and FBA on the side? Would you like to super size it?”

Taking a fast food ordering approach when implementing SharePoint is not effective in meeting business needs. The key is to initially engage with the business, understand their pain points and identify how SharePoint can provide the solution to address these needs.

You do not want to throw a toolbox to the business and tell them to go look for a problem to solve.

In my last article, I discussed the first two reasons why executive SharePoint ignorance is not bliss, here are the remaining three:

Note: If you haven't already, take a look at Reasons 1 and 2 on Why Executive SharePoint Ignorance is not Bliss.

The job of how to implement SharePoint in an organization should not be in the hands of the IT department. It belongs with the business and the backing of executive decision makers. Here's why.

Editor's Note: Vote for your favorite SharePoint 2010 topic. We'll adjust our SharePoint coverage to focus on what you, our readers, want to know (but do it now, we'll close the poll on November 30th).

The J. Boye Aarhus Conference is just around the corner. If you are headed there to soak up some new knowledge, by the looks of things you won't be disappointed.

Although originally a conference dedicated to content management topics, the gathering has evolved to include web strategy, user experience, online communications, information governance and more.

Experts in the Field

The list of speakers is lead by the opening keynote Design for Behavior Change: Why Facebook & Twitter Are Winning by BJ Fogg. Fogg is a researcher from Standford University where he has done cutting-edge research on the persuasive powers of software. He is listed as one of CNN Money.com's 10 new Gurus Your Should Know. Snazzy, eh?

Fogg's keynote focuses on how technology such as mobile and social media is influencing human behavior. Fogg will explain how three elements --  motivation, ability and triggers -- combine to influence human behavior and how social media sites like Twitter and Facebook leverage these elements.

The J.Boye Conference in Aarhus is gathering of practitioners. This means that many of the speakers come directly from the trenches and speak to you plainly about what they've learned. Some of the notable names include: Bob Boiko, author of Laughing at the CIO and The Content Management Bible, Shawn Shell, SharePoint Expert and Jane McConnell, Intranet and portal strategy specialist.

Sessions and Tutorials

If the speakers aren't enough to entice, the tutorials and sessions should be. Included in these are:

• Persuading People with Digital Media tutorial with BJ Fogg.
• Two SharePoint tutorials: A governance perspective with Martin White, and Managing a Successful SharePoint Project with Shawn Shell.
• And if you are going to learn more about Intranets, then you will want to attend Jane McConnell's tutorial, Intranet Governance: a powerful tool, where she will reveal for the first time the results of her company's 4th annual Global Intranet Strategies Survey.

Sessions run the gamut from Content Management Marketplace and Trends to Intranet governance, to social media, to a number of actual case studies and much more.

Taking place November 4th - 6th, the J Boye event is packed with best practices, lessons learned and advice from industry experts. If you haven't already registered, it's time to do so.

Compliance, compliance, compliance. It's not that companies don't want to be compliant. They do. It's more that there are many things that complicate the process, like vendors with too much access to private information and virtual environments. Two recent surveys highlight these issues.

This week in Governance, Regulation and Compliance examines the current state of eDiscovery and issues within the oil, gas and energy sector.

Vamosa's (news, site) been a busy little bee this summer. On top of landing a pretty penny (er, pound) from the Capital for Enterprise Fund and a partnership with SchemaLogic, the enterprise content governance specialists have formed a strategic alliance with Cambridge Technology Partners (CTP). The union is expected to further address ECoG by way of a range of technologies for analyzing, migrating, monitoring and maintaining unstructured content types, such as Web and document content.

The partnership will operate under the belief that most companies don't consider content governance challenges until they launch a migration or consolidation project. Logically, the match works because CTP's individual response is to help companies understand and address these challenges beforehand, while Vamosa offers an integrated suite of products to manage the end-to-end process of maintaining content quality.

"The notion of web and enterprise content governance is gaining more attention within the enterprise," said Vijay Srinivasan, CEO of CTP. The challenge many organizations face today is compliance--or lack of it--with internal and external policies and regulatory standards. While enterprise content tends to be driven by content quality and governance principles, many organizations often end up with content that is not accessible, not cost-controlled and impossible to search.”

Word on the street is that together the two companies will begin by focusing on popular platforms like Microsoft SharePoint, Documentum, Oracle UCM, IBM Lotus Notes, and Day Software. To keep up with the developments, hang around here.

The Governance Portal, a software platform by Protiviti, has received an update. Version 3 offers enhancements to a GRC tool aimed at integrating proprietary information and expertise with a trusted framework for managing and mitigating the risks associated with compliance and regulatory issues.

From surveys and self-assessments to data collection and audit management, users can implement new features in the Governance Portal to help them manage enterprise and operational risks, optimize internal audit processes while monitoring compliance risks.

This week in governance, risk and compliance brings us partnerships, advice and lessons learned from the recession.