It’s the disappointing truth about much of Corporate America’s IT efforts: Despite years of overhauls, tweaks, and projects, many companies still remain unprepared for lawsuits, audits, or regulatory probes because they lack the IT infrastructure to manage their data effectively and apply it to compliance efforts. So say two recent studies trying to gauge the general unpreparedness of corporate IT departments.
PricewaterhouseCoopers, in a survey of almost 7,800 senior executives at companies in more than 50 countries, found that U.S. and international organizations still struggle with applicable information-security laws and regulations that govern their industries. For example, about 35 percent of U.S. respondents admit that they remain out of compliance with Sarbanes-Oxley—down only slightly from the 38 percent who responded similarly in 2005.
