News

Avoiding the Pitfalls of Data Mining

Cyber-Attacks Fail to Alarm

Are executives ignoring cyber-risks? Even as cyber-attacks on corporate networks increase in number and severity, such risks have done little to illicit the type of alarm that senior leadership teams should be sounding, finds a new report. "It's a 21st Century risk that a lot of companies have not really come to grips with," says Sean Joyce, principal of PwC's U.S. Advisory Forensics Services practice.

Protiviti Launches Anti-Corruption Portal

Protiviti has released the Protiviti Governance Portal for Third-Party Anti-Corruption, enabling companies to develop and manage a risk-based, third-party anti-corruption program that supports compliance with the Foreign Corrupt Practices Act and other anti-corruption laws. Details inside.

BlackLine Systems Unveils COSO Jumpstart Solution

BlackLine Systems has unveiled its "COSO Jumpstart Solution" to help companies comply with new guidelines set forth in the updated 2013 COSO Internal Control—Integrated Framework. Details inside.

Intellinx Integrates HADOOP for Improved Cybersecurity

Intellinx has integrated its Intellinx Fraud Management Platform with the Hadoop framework to deliver cost effective real time enterprise-wide fraud prevention. The Intellinx cyber-security solution utilizes contextual data by profiling both applications and users to identify more sophisticated types of attacks with increased accuracy. Details inside.

RainStor Releases Compliance Data Archive Solution

RainStor, an enterprise database provider for Big Data, has launched a new tool that works with EMC Isilon SmartLock application to provide protection against manipulation or deletion of critical data, giving enterprises the ability to retain data for specific timeframes. Details inside.

Regulating the Internet of Things

As everything from automobiles to washing machines and pacemakers gets connected to the Internet, regulators struggle to enforce data privacy and security standards. Companies need to take the lead, experts say. "The problem is that the government cannot set standards for data security, because the technology changes all the time," says Theodore Claypoole, a partner at law firm Womble Carlyle Sandridge & Rice.

Technology Consortium Develops Anti-Bribery Tool

In conjunction with Hiperos and Thomson Reuters, the Global Technology Distribution Council, an industry consortium representing technology distributors, has launched an anti-bribery/anti-corruption due diligence platform to help mitigate third-party risks. Details inside.

ISACA Explains Interplay of COBIT Framework with COSO

ISACA, an organization that provides guidance and information on auditing computer controls, has published a guide to explain how its COBIT framework, widely used for the governance and management of enterprise information technology, relates to the new COSO Internal Control—Integrated Framework.

Balancing the Power of Social Media With Compliance Risks

While no one doubts the power of communicating over social media, the risks are numerous. First are the risks of running afoul of regulations that cover records retention, e-discovery, labor relations, advertising, and disclosure, to name a few. Then there are the reputational risks involved with unmanaged or unplanned messaging. To strike a balance, companies must craft policies that don't overly restrict the business from leveraging social media, while addressing all these risks. More inside.

Actiance, Shoutlet Partnership Provides Companies With Compliant Social Marketing

Actiance, a provider of end-to-end social business governance for the enterprise, and Shoutlet, an independent cloud-based social relationship platform provider, has announced a partnership that integrates Shoutlet's social marketing capabilities with Actiance Socialite, and its governance platform.

Actiance Tool Gives Employers Control Over Employee Access to Social Networks

Actiance, a provider of end-to-end social business governance for the enterprise, has announced availability of Socialite Feature Control, a new licensing option for Socialite, which lets organizations to mitigate risk so that their workforce can listen to social conversations on Facebook, LinkedIn, and Twitter. Details inside.

Boards Look to Boost Oversight of Cyber-Security, Privacy Risks

Two recent surveys find that boards admit they have a poor grasp of cyber-security and data breach risks, and that management does a poor job of providing them with adequate information for effective oversight. To bridge the gap, boards are looking to boost their IT and data management experience and ask better questions of management. Details inside.

AvePoint Releases Compliance Guardian

AvePoint, a provider of enterprise-class Big Data management, governance, and compliance software solutions, has released AvePoint Compliance Guardian Service Pack (SP) 2, enabling organizations to establish an effective compliance and risk management process to ensure that information is available and accessible to the people who should have it, and protected from the people who should not.

Woolworths Selects MetricStream for Supply Chain Management

Retail chain Woolworths has implemented MetricStream's Sustainability Performance Management Solution to capture and measure sustainability metrics and indicators around energy, water, soil, and waste management. The solution also will help Woolworths monitor supplier compliance with sustainability guidelines, and optimize the performance of the company's sustainability projects and initiatives. Details inside.

Oversight Systems Releases Cloud-Based Travel and Expense Trend Analysis Solution

Oversight Systems this week announced the release of Oversight Connector for Concur, an integrated cloud-based travel and expense trend analysis solution built on the T&E Cloud Platform with Concur, a provider of cloud-based travel and expense management solutions. Details inside.

RoseASP Appoints Chief Compliance Officer

RoseASP, a provider of hosted Microsoft Dynamics ERP and CRM applications, has named Glen Medwid as chief compliance officer.

ARMA International Launches Information Governance Assessment

ARMA International launched this week its Information Governance Assessment, a software platform that organizations can use to identify information-related compliance risks across the enterprise, drive improvements, and develop metrics for measuring information governance program maturity. Details inside.

FTI Consulting Launches Ringtail Version 8.4

Global business advisory firm FTI Consulting has announced that its FTI Technology business segment has launched Version 8.4 of its Ringtail e-discovery software, which will be available to users in March 2014.

Companies Delaying Systems Upgrades Over Lease Uncertainty

Uncertainty about what the final standard for lease accounting will contain and when it will be issued is complicating and even delaying some IT systems implementations, according to a recent survey from Deloitte. Respondents said complying with the new standard will be difficult because they have concerns over the effectiveness of their IT systems and the quality of the data that's available. More inside.

New Standards for Payment Card Data Security Take Effect

A new set of IT security standards governing how companies should protect consumers' credit card data took effect this month, creating new compliance mandates for companies that store, process, or transmit cardholder data. In light of data breaches at Target and Neiman Marcus, the standards may be timely, but they add new compliance burdens for retailers, payment card processors, banks, and others. Full details inside.

Are You Ready for Bitcoin?

Bitcoin, a virtual currency that has remained mostly on the fringes of online transacting, could be set to go mainstream, as companies like Overstock.com, Match.com, and Zynga begin accepting it for payment and others consider it as a financial hedging tool. Bitcoin's quirks offer some unique benefits, along with several accounting, risk, and compliance challenges. More detail inside.

Harnessing Big Data to Find Fraud? First, Find the Right Data

For all the promise of using Big Data to spot potential fraud, there's a steep hill to climb when getting started: identifying what data to gather and analyze from the heaps of information most companies generate. Getting it wrong can waste time and money. "You really want to collect and analyze only the data that is going to be of most value to you," says David Jonker, senior director at business software company SAP.

Some Growing Pains, but No Stopping Move to BYOD Policies

Some companies may be rethinking their policies of letting employees bring their own devices to work and accessing company data and networks with them, as the task of managing data and keeping up with new product releases proves difficult, and cost savings aren't meeting expectations. But don't expect a reversal of the trend. Surveys indicate that companies are still planning to move to BYOD in the coming years. More inside.

Busting the Barriers Between Compliance, IT, and the Business

Large, global companies have plenty of language barriers to consider—including the communication gaps that divide business functions. During a panel discussion at last week's Compliance Week Europe conference, compliance and legal executives from telecom giant BT and Bank of Ireland looked at how compliance executives can unify all three sides early, often, and effectively. More inside.