audit in comment and analysis
Richard Williams
CIO Profile Before joining Astra, Williams worked at audit and consulting firm Coopers & Lybrand where he led a number of IT strategy and application development programmes working with various pharmaceutical and consumer companies. [11 Jun 2008]
How to detect data leaks
Comment When a data leak is detected the DLP tool can block the leak or warn the user and also provide an audit trail for compliance. Data leaks are a growing problem. Yet most firms don't know how sensitive data is getting out, let alone how to stop it. [19 Mar 2008]
ID tech tightens up compliance
Comment Organisations need to ensure such devices are included in the identity management systems they put in place - for example, by requiring employees use a personal swipe card for securing access to printers and photocopiers, which can also provide an... [18 Mar 2008]
Malice, misuse, mistake - security dangers pile up
Comment Twenty-five million child benefit records were lost in the post between HMRC and the National Audit Office. Not only was the data not encrypted on the CDs, the National Audit Office had only requested three pieces of information - the names of the... [10 Mar 2008]
The Naked CIO: Identity crisis
Comment I spend about 20 per cent of my time preparing and reviewing audit remediation requirements to ensure we are meeting our principal obligations. So why as a consumer does he blithely share his own personal details at the drop of a hat? [25 Feb 2008]
What price compliance?
Comment A common complaint in recent years has been that regulatory compliance involves increased audit fees. For example, BT says that its spend on audit fees increased by almost one-third due to Sarbanes-Oxley alone. [07 Jan 2008]
Locking down financial security
Comment Problems with system access rights accounted for three of the top five audit findings for those surveyed. One might reasonably expect the finance services sector to be well in credit when it comes to electronic security. [24 Dec 2007]
How closely are you monitoring?
Comment Network flow analysis can look deeper into your network than a typical firewall can, without the unwieldy audit trail. But the trick is knowing what to monitor and then how to monitor it, says Stewart Baines. [10 Dec 2007]
The Weekly Round-Up: 23.11.07
Round-Up The discs were sent to the National Audit Office by a junior HMRC official via unrecorded delivery. It's not often the Round-Up gets on its moral high horse but this week is an exception. So, after struggling to recall which way around the saddle... [23 Nov 2007]
Can biometrics secure the public's data?
Comment Apparently, systems that support electronic patient records - a central part of the National Programme for IT (NPfIT) - produce audit trails of who has accessed what information. But do time-strapped NHS staff have time to police audit trails? [23 Nov 2007]
Leader: It's time for a data breach disclosure law
Leader The HMRC data breach - in which the unencrypted details of 25 million people on the child benefit database were downloaded by a junior official onto a CD and sent, unregistered and unrecorded, by post to the National Audit Office - highlights the... [22 Nov 2007]
Dear silicon.com... Data breach row, hotel iMac, wi-fi piggybacking: yay or nay?
Comment This case seems to have involved both procedural and supervision failures not only at HMRC but also at the National Audit Office. What's got silicon.com readers reaching for their keyboards this week? [22 Nov 2007]
Editor's Blog: Goodbye silicon.com - and thanks
Comment our best audience figures to date - three-quarters of a million of you registering around four million page impressions (so said ABCe at the time of our last audit).the creation of an editorial board which we regularly turn to for input.the yearly... [08 Nov 2007]
On-demand software can help banks avoid fines
Comment For example, they have had their delivery systems and procedures verified by external audit and are willing to accept service-level agreements in contracts. Carol Wheatcroft argues that hosted services offer a viable alternative to in-house... [01 Nov 2007]
Why do public sector projects fail?
Comment An investigation by the National Audit Office (NAO) found that 'go live' of the system had been authorised, despite the CSA and its supplier being aware that there were 52 defects within the system. The last decade has been littered with huge... [24 Jul 2007]
Keep updated for stories matching audit in comment and analysis via RSS
