AKIBIA'S PRACTICAL GUIDE TO ENTERPRISE TECHNOLOGY
Thursday, September 03, 2009
IT Needs Turbo Compliance
IT executives are exhausted by the compliance challenge. Managing so many complex rules and requirements takes time, budget and resources, and even still executives can’t be sure they have done everything necessary to ensure compliance.
While compliance solutions in and of themselves are not new, the fact remains that no current solution solves the whole issue at once. Multiple solutions must be patched together with manual work— whether done by consultants or IT staff. As is history with the technology industry, new solutions are created to solve the same challenges, until one solution is ultimately effective. As an industry, we aren’t there yet with a compliance solution, but we are compliant. As a result, complete compliance solutions will be a hot topic as we head into the next year.
Today reporting tools like Shavlik and RSA Envision provide detailed reports on the data, and that is helpful, but it does not address the complete needs of the audit. Instead, security experts are required to put the last piece in place – matching the data reports to the Audit requirements and assessing compliance readiness. Often the approach tackles one regulation at a time instead of leveraging the similarities between different regulations, such as PCI, FISMA and FERPA, for example. This adds time and cost to the compliance process unnecessarily.
The ultimate solution will be able to do for compliance what Turbo Tax did for the tax industry. Turbo Tax took what was once a complex process that required expensive consultants and understanding large amounts of rules and made it a much simpler, cost efficient and easier process. IT needs Turbo Compliance.
At Akibia we believe we are close to Turbo Compliance with a Managed Service that understands compliance gaps, incorporates data reports, reads them and produces an output that matches the audit requirements. As regulations change, the Managed Service can consistently suggest relevant updates and modifications while simplifying internal processes.
What’s your solution for managing the multiple compliance requirements?