Compliance means one thing to a corporation -- taxation. It’s all about managing the legislative lemons that are delta out by our government (and others) at an alarming rate. Ask any corporate executive about HIPPA, SOX, and GLB etc. They quickly have a look of fear and concern. No doubt, if neglected in any of these categories you liable for law suits or CEO prison – a different kind of pinstripes.
So how can we turn these Lemons into Lemon-aid? Well, technology can help, new innovative companies like Tizor can provide insight into vulnerabilities monitoring data streams real-time. Today companies not only cope with compliance mandates but must transition that effort into measured trust. And you know what’s printed on every dollar -- “trust”.
How does this trust lead to corporate profits? Through building trusted peer relationships across the street or around the world. Once you and your external partners can agree upon the governing rules, trust monitoring should be the key. Like back in the 80’s when Regan met with Gobechev, the catch phrase during the nuclear talks were “trust but verify”, and that’s exactly what corporations my do today. Profiting together in harmony by demonstrating trust and eliminating / exposing dangerous combinations.
Outsourcing is all the rage, but what’s happening with your (your customers) data at that site. What about the legislation governing that data, and in those country’s – can you discern today what pieces of data are venerable to your corporate health and in what countries?
If this hasn’t struck a cord within by now you’re not in the Compliance game, but if it has you know all to well that this is exactly at the heart of the issue and must be addresses if companies are to being to collaborate horizontally in Financial Services, Health Care, and Supply Chain Management.
Tizor – check’em out.
Cheers, Don.
I have just came across one website which provides a wonderful tool to comply with regulatory authority like HIPAA and it also helps in complying with many other regulations also. A crosswalk matrix poster between different regulations of Symantec is a very useful tool for compliance team and risk management office. This poster is crosswalk between: ISO 17799, COBIT 4.0, Sarbanes Oxley, HIPAA, Payment Card Industry (PCI), GLBA, NERC standards CIP and PIPEDA (Canada) http://www.compliancehome.com/symantec
Posted by: Mike | July 25, 2007 at 10:06 PM
Enforcement of compliance regulation is must for many organizations but implementing, establishing and maintaining of same is a tough task due to complexity and cost. www.Training-hipaa.net website provides a wonderful and valuable template suite which any organization, small or big, can use to meet their compliance requirements for HIPAA, Sarbanes Oxley (SOX), FISMA, ISO 17799 or any other regulation/standards requiring business impact analysis, risk assessment, disaster recovery planning (DRP), business continuity plan (BCP) and Testing & Revision of Plan.
http://www.training-hipaa.net/template_suite/enterprise_contingency_plan_template_suite.htm
Posted by: compliance advisor | September 19, 2007 at 05:07 AM
There are some nice HIPAA compliant websites and services out there providing what healthcare professionals need. Take a look at iMedicor.
Posted by: Arnis Supe | January 07, 2008 at 03:12 AM
There are some nice HIPAA compliant websites and services out there providing what healthcare professionals need. Take a look at iMedicor.
Posted by: Arnis Supe | January 07, 2008 at 03:12 AM