Note

Internal risk demands internal controls. However, strong controls can inhibit the business process. Balance the risk mitigation benefits of internal controls with the impact they have on business process and the investment required deploy them.

Solution Set

Issues such as privacy, fraud, security, and corporate accountability mean that every organization should already have some process in place to monitor and limit employee actions in the workplace.

Tool

There are numerous areas on which organizations can focus to improve controls and manage internal threats for compliance or risk mitigation purposes. To improve, organizations need to gauge their current level of maturity and prioritize their...

Template/Policy

A well governed access management process requires formalized management approval for access to systems and physical access points. Use this tool to develop a formal process for employee access requests.

Tool

A well governed access management process requires formal management approval for access to systems and physical access points. Use this tool to track current access to systems and other access points in the organization.

Moving IT to a business-centric IT delivery model is a process that continues to challenge small and midsized enterprises. Gauge the enterprise's current ITSM maturity by learning why and how other small and midsize enterprises are moving to...

Moving IT to a business-centric, services oriented model is a process that continues to challenge fast growing small and mid-sized enterprises. Info-Tech In-Depth Research interviews provide valuable insight on what drives organizations to...

Data privacy is a pressing and growing concern for all enterprises. Small enterprises should segregate duties and tasks at the operational level to create an IT environment based on security best practices like least privilege.

Compliance remains a key concern for many IT managers. Frameworks like ITIL and COBIT are very popular, but the NIST 800 guidelines and ISO 17799/27002 may be more beneficial. Regardless of the approach, IT leadership is sacrificed when...

Info-Tech recently asked 31 manufacturers about their use of compliance frameworks for IT operations. The results demonstrate the popularity of ITIL and COBIT and indicated an increased need for compliance training.

Info-Tech recently asked 16 participants from professional services about their use of compliance frameworks for IT operations. The results demonstrate the popularity of ITIL and COBIT and indicate an increased need for compliance training.

Organizations today recognize the impact IT can have on the success of the enterprise. As a result, boards of directors and executive management teams understand the strategic importance of IT and are putting IT governance firmly on the agenda.

Small to mid-sized enterprises (SMEs) can implement IT controls for governance, compliance, and improved security, all without breaking the bank. Concentrate on the most essential controls first to achieve SME compliance goals.

Small and mid-sized enterprises (SMEs) are learning to reap the benefits of the IT Infrastructure Library (ITIL). However, blindly following ITIL in the hopes of ending IT chaos is doomed to fail. Establish specific goals for ITIL practices...

The Information Technology Infrastructure Library (ITIL) is growing in popularity among IT leaders. However, many IT leaders don't truly understand ITIL basics. Those new to ITIL must establish specific goals for ITIL prior to initiation.

The Information Technology Infrastructure Library (ITIL) refresh project has produced a new version for ITIL (v3) in the form of five core publications and a series of complementary and Web based products. Together they replace the current...

In-Depth Report

Sufficient levels of ERP security are lacking in many ERP implementations, which can cause severe financial losses due to fraud and non-compliance. Mitigate these risks through effective security processes.

Beneficial though the IT Information Library (ITIL) may be for improving service management, compliance is not its core function. Explore the potential of more suitable frameworks such as Control Objectives for Information and related Technology...

Many IT leaders are jumping on the IT Infrastructure Library (ITIL) bandwagon in an effort to increase IT service levels and decrease costs. However, many IT leaders struggle with what ITIL is all about. Info-Tech has compiled common ITIL myths...

Aligning IT processes with business processes is key to improving efficiencies for IT and reducing costs for the business, but enterprises must first adopt and implement a governance framework. Compare and assess the various frameworks to find...

ITIL can be an overwhelming proposition for IT leaders. Those looking to adopt the IT Infrastructure Library (ITIL) frequently struggle with many questions around what ITIL is and what it can do for their organization. Use Info-Tech's series of...

Info-Tech Research Group's Adaptive Security model improves the security of the enterprise while facilitating regulatory compliance. To achieve this, changes in the enterprise's processes, technologies and organization are all required. Breaking...

Enterprises are jumping on the IT Infrastructure Library (ITIL) bandwagon in an effort to increase efficiency, decrease costs, and align business and IT needs. ITIL can be an overwhelming proposition for many IT leaders. Know the frequently...

Small to mid-sized enterprises (SMEs) can benefit from implementing control objectives for governance, compliance, and improved security. The Securities and Exchange Commission's (SEC) recent Sarbanes-Oxley (SOX) announcement puts an end to...

In-Depth Report

IT service management is a key weapon in the war to make IT more responsive to the business users it serves. Best practices frameworks such as IT Infrastructure Library (ITIL) provide the essential structure to moving forward with service...