Grc News & Articles

With all the raz-ma-taz around the release of SharePoint in May, and the rush to SharePoint deployments, many enterprises forgot to ask themselves whether they should deploy it. There are also possible GRC issues for open source GPL licenses, new research shows.

In May, I wrote about the fact that there is no commonly accepted definition of GRC. While it is understood that the acronym stands for Governance, Risk Management and Compliance, each consultant and vendor -- to the consternation of practitioners -- seems to use a different definition to explain the meaning of GRC. As important as defining GRC is the question, "why talk about it at all?"

Although influenced by multiple Enterprise CMS passion attacks, in its heart, EMC (news, site) has always been a data storage/management company. Having experience with managing large content/case/records assets in the enterprise is part of the attraction.

With the upcoming acquisition of a privately-held, data warehousing company Greenplum, it's becoming even clearer where EMC's true heart desires lie -- on the intersection of big data computing and business analytics.

If you were always worried about the plug-ins you use and the security threat they might pose, Google seems to agree and has just announced that it is going to limit certain plug-ins with its Chrome browser. Social Media also poses a security threat according to the Ponemon Institute.

The Gartner Security and Risk Management summit has just come to a close and while it covered ground in many areas, two particular topics caught our attention: social media and spending. Gartner is not the only company concerned with social media, Deloitte has been looking at it and the problems of e - Discovery too.

When EMC announced a strategic partnership with FatWire designed to replace their Web CMS with FatWire's Web Experience Management framework, there was a lot of talk about the benefits for both companies and clients, but not a lot of detail.

After speaking to FatWire, it looks like clients of the combined solution should start seeing improvements in Digital Asset Management (DAM), compliance and analytics.

The tools called WebWorks are partially still in the works, coming from an expected source – Vamosa (news, site) – and designed (as ever so slightly hinted in the name) to make the web work and work better with proper controls by web managers.

This week there has been a whole spate of new releases in the world of GRC, most of which -- unsurprisingly -- have been focused on better security. There have also been a couple of acquisitions as well as increasing interest in services and cloud computing.

The recent release of annual figures from Autonomy (news, site)  indicated that company was in the market for more acquisitions. No surprise then that it has just announced it is buying CA’s information governance business, including CA Records Manager and CA Message Manager.

In a week that has seen a number of new releases on the GRC front, IBM has decided that the best way to deal with security is to build it into applications at the blueprint stage. Social media content is also being vetted for unstructured content that could end you up in e-Discovery hot water.

 Although risk is the often the most discussed element of GRC (Governance, Risk, Compliance), it is important to understand all aspects. Let's start with Governance.

There has been a lot of noise in the past week made by the EU who says three major search engines are holding onto search data too long. A new release from ConverterTechnology ensures safe migration to Office 2010.

With industry talks about social media policies and governance abound, Autonomy (news, site) released a new product called Autonomy Social Media Governance built to monitor and govern enterprise information on social media channels.

Social media was and will always create compliance headaches unless there is a way of monitoring its use. Autonomy has come up with a solution to do just that, while Laserfiche produces a governance framework for public sector workers.

Recent events -- particularly in the financial services sector -- have increased the pressure on enterprise records management practitioners, as more and more companies face regulatory audits or litigation-related discovery requests. The idea of document management is easy for most people to understand. Records management, on the other hand, presents some conceptual challenges. Here's a primer.