Managing Online Risk Chapter 7 Add. Resources

Reckless person

Compliance

These are resources are to help you apply some of the concepts, best practices, and lessons learned from the content in each chapter. Most of them are in addition to what are already listed in the book and serve to complement the highlighted resources in the chapters. Post in the comments others that you would recommend.

  1. Compliance Week: Compliance and Social Media: Ensuring Your Company’s Online Activity Adheres to Security and Regulatory Standards (White Paper, Oct 2014) http://www.complianceweek.com/thought-leadership/white-paper/compliance-and-social-media-ensuring-your-company’s-online-activity
  2. US News & World Report: Best Jobs of 2012: Compliance Officer http://money.usnews.com/careers/best-jobs/compliance-officer
  3. ISACA: The Top 10 Compliance Project Challenges and Opportunities  (2008) http://www.isaca.org/Journal/Past-Issues/2008/Volume-5/Pages/The-Top-10-Compliance-Project-Challenges-and-Opportunities1.aspx
  4. CSO: 7 ways to work around security compliance problems (Jan. 2014) http://www.csoonline.com/article/2134254/it-audit/7-ways-to-work-around-security-compliance-problems.html
  5. Dark Reading: Finding the Balance between Compliance and Security (Jan. 2014) http://www.darkreading.com/compliance/finding-the-balance-between-compliance-and-security/d/d-id/1113620
  6. CIO: 7 Biggest IT Compliance Headaches and How CIOs Can Cure Them (Sept. 2013) http://www.cio.com/article/2382445/compliance/7-biggest-it-compliance-headaches-and-how-cios-can-cure-them.html

Managing Online Risk Chapter 7 Questions

MP900315598

These questions are to help you apply some of the concepts, best practices, and lessons learned from the content in each chapter. You can use them in individual reflection, or present them to your security team for group feedback and discussion.

If you haven’t bought the book yet go to our “Buy the Book” tab or click here: http://store.elsevier.com/Managing-Online-Risk/Deborah-Gonzalez/isbn-9780124200555/

Compliance

  1. Is your company in a regulated industry?
  2. Does your company have a compliance officer and/or department?
  3. Does the company’s IT security team ever interact with the compliance team?
  4. Does your company have any of the components of a compliance toolkit as listed on page 183?
  5. Have you or anyone in your company used any of the compliance apps listed on page 157? What others have you used if any? What do you like and/or dislike about them?

Chapter 7: Compliance Summary

WCChap7This chapter focuses on regulated industries (such as banking, healthcare, higher education, etc.) and the different risks associated with violation of compliance standards that must be adhered to because of online and digital activity.  Discussions focus on topics such as disclosure, disclaimers, professional trade oversight organizations and guidelines, federal and state legislation, and current best practices.