Top Business/Technology Issues Survey Results

by ISACA

In May 2008, ISACA conducted a survey of members, managers and above to identify current business issues, supported by technology. Responses were classified by industry, geographic area and constituency (assurance, IT management and security management). This report summarizes the findings of the survey and provides a concise view of the most prevalent current business/technology issues. Read More

Key Issues for Information Archiving and Retention,2007

Kenneth Chin, Carolyn DiCenzo. Gartner

Well managed information archives are crucial as organizations strive to meet new compliance and discovery requirements. Gartner identifies five key issues for consideration during 2007 for information archiving and retention management technologies. Read More

Coming to grips with IT risk

A report from the Economist Intelligence Unit sponsored by SAP

What is the greatest risk to any large business? Most executives would say it is information technology (IT) failure. Companies fear IT collapse more than they do terrorism, natural disasters, financial risk or regulatory constraints-and with good reason, for IT failure can make any business go into a tailspin. Read More

IT Governance in Practice
Advisory and Tax

by PWC

Insight from leading CIOsPricewaterhouseCoopers has interviewed a number of CIOs worldwide to obtain their views on IT Governance,
their experience in implementing IT Governance, and what it takes to make IT Governance work. Read More

Data Governance in the Software Lifecycle
Assuring the security of sensitive information

First published: May 2008

by Martin Atherton, Jon Collins and Dale Vile. FREEFORM DYNAMICS

Many organisations have been driving improvements in information management to gain better control over their information assets. While things in this area are not perfect, awareness of the challenges is now high and action is being taken to enhance capability in the areas of compliance, discovery and, not least, data security. But are all the bases adequately covered? Read More

Useful Links

This section provides links for Governance, Risk and Compliance related bodies that can help your organizational maintain compliance and alleviate risk:

• FINRA the Financial Industry Regulatory Authority
• Government Regulators concerned with mandates that involve IT compliance issues across the public sector.
• Independent Organizations dedicated to assisting IT management and GRC Professionals in meeting compliance requirements.
• Industry Associations set up to assist auditing professionals meet compliance requirements.
• Policy Standards and Frameworks provides guidance for organizations seeking to meet IT compliance regulations.
• Industry Regulations provides an overview of GRC regulations per sector.

The IT GRC Forum welcomes your suggestions for more listings. Please send your suggestions to This email address is being protected from spambots. You need JavaScript enabled to view it.

Click on the links to get a detailed overview of each regulation.