This document discusses IT governance and compliance. It outlines challenges around interpreting regulations, managing compliance across business functions, and addressing compliance requirements that are duplicative or change frequently. It also notes the need to simplify compliance monitoring and reduce audit preparation time. The document proposes that a centralized solution could help by defining requirements, monitoring systems for compliance, and providing reporting on compliance status and incidents. This could help organizations better achieve compliance goals while focusing on business needs and reducing costs.
This session will go into detail about the major features in Novell Identity Manager 4.0. It will give you the opportunity to get involved in a detailed discussion on the major new features in Identity Manager with the product management team. Hear more on the latest enhancements including role mapping administrator, advanced reporting capabilities, details of the embedded/preconfigured identity vault, single sign-on, resource model, REST services for custom user interface development, and much more. You will walk away with a solid understanding of the functionalities and business benefits provided by the new features.
Speaker: Bob Bentley Product Manager
Novell, Inc.
Kamal Narayan Product Manager
Novell, Inc.
ProcessGene develops forward-thinking GRC software solutions, designed to serve multi-subsidiary organizations. The company has been acknowledged as a market leader and innovator by the most important analyst firms. Businesses and governments worldwide use ProcessGene solutions to manage and control risks, assure compliance to policies and regulations, manage corporate governance programs, and perform internal audits.
ProcessGene’s Multi-Org technology enables synchronized management of several business process models (e.g per subsidiary), all linked to a centrally controlled, global business process baseline.
ProcessGene also offers a full range of Multi-Org Business Process Management (BPM) solutions. For more information, visit www.processgene.com.
http://www.processgene.com//index.php?pageIndex=grc-solutions
This session will go into detail about the major features in Novell Identity Manager 4.0. It will give you the opportunity to get involved in a detailed discussion on the major new features in Identity Manager with the product management team. Hear more on the latest enhancements including role mapping administrator, advanced reporting capabilities, details of the embedded/preconfigured identity vault, single sign-on, resource model, REST services for custom user interface development, and much more. You will walk away with a solid understanding of the functionalities and business benefits provided by the new features.
Speaker: Bob Bentley Product Manager
Novell, Inc.
Kamal Narayan Product Manager
Novell, Inc.
ProcessGene develops forward-thinking GRC software solutions, designed to serve multi-subsidiary organizations. The company has been acknowledged as a market leader and innovator by the most important analyst firms. Businesses and governments worldwide use ProcessGene solutions to manage and control risks, assure compliance to policies and regulations, manage corporate governance programs, and perform internal audits.
ProcessGene’s Multi-Org technology enables synchronized management of several business process models (e.g per subsidiary), all linked to a centrally controlled, global business process baseline.
ProcessGene also offers a full range of Multi-Org Business Process Management (BPM) solutions. For more information, visit www.processgene.com.
http://www.processgene.com//index.php?pageIndex=grc-solutions
This webinar focuses on business rules and on Business Rules Management Systems as a platform for Decision Management Systems. You will learn how a Business Rules Management System makes the agility and transparency you need possible and what the key components are for an effective Business Rules Management System. The power of business rules to support both policy and analytic rules and the role of decisions in effective business rules solutions will also be discussed.
Enable process visbility: The Value Proposition for SAP customers IBM WebSphereIndia
This presentation was given by Joe Kaczmarek, Worldwide Sales Leader, IBM Business Process Management and Operational Decision Managemnt.
It was presented during Impact 2012 in Mumbai on the 1st of June, 2012.
Information technology sector has experienced a stupendous growth lately and the outlook looks positive with return of consumer confidence and renewal of business growth which is expected to drive IT spending going forward. India accounts for less than 5 per cent of global technology spending – tremendous untapped potential for growth of IT sector, in both core as well as emerging opportunities.
Keeping pace with growing momentum and corporate needs for better IT governance and compliance, we’re pleased to launch our IT Risk Advisory Services in addition to our existing bouquet of Risk advisory, Consulting, Training & Human Capital Services.
Configuration Management is at the core of effective service management. The quality of data within the Configuration Management Database (CMDB) affects the efficiency of the entire corporate Service Management strategy, as all processes utilize and feed into Configuration Management. As defined by ITIL, Configuration Management is more than a simple registry of physical assets; it includes documentation, Service Level Agreements, service catalogs, warranties, and knowledge. It enables the enterprise to manage the evolving relationships of those assets with customers, internal departments and locations, other organizations, and external suppliers.
This webinar focuses on business rules and on Business Rules Management Systems as a platform for Decision Management Systems. You will learn how a Business Rules Management System makes the agility and transparency you need possible and what the key components are for an effective Business Rules Management System. The power of business rules to support both policy and analytic rules and the role of decisions in effective business rules solutions will also be discussed.
Enable process visbility: The Value Proposition for SAP customers IBM WebSphereIndia
This presentation was given by Joe Kaczmarek, Worldwide Sales Leader, IBM Business Process Management and Operational Decision Managemnt.
It was presented during Impact 2012 in Mumbai on the 1st of June, 2012.
Information technology sector has experienced a stupendous growth lately and the outlook looks positive with return of consumer confidence and renewal of business growth which is expected to drive IT spending going forward. India accounts for less than 5 per cent of global technology spending – tremendous untapped potential for growth of IT sector, in both core as well as emerging opportunities.
Keeping pace with growing momentum and corporate needs for better IT governance and compliance, we’re pleased to launch our IT Risk Advisory Services in addition to our existing bouquet of Risk advisory, Consulting, Training & Human Capital Services.
Configuration Management is at the core of effective service management. The quality of data within the Configuration Management Database (CMDB) affects the efficiency of the entire corporate Service Management strategy, as all processes utilize and feed into Configuration Management. As defined by ITIL, Configuration Management is more than a simple registry of physical assets; it includes documentation, Service Level Agreements, service catalogs, warranties, and knowledge. It enables the enterprise to manage the evolving relationships of those assets with customers, internal departments and locations, other organizations, and external suppliers.
A large internet services provider who was experiencing rapid growth of their IT infrastructure had twin challenges. They needed to support IT without growing their IT staff, while also increasing the time spent on enhancing and improving services rather than “keep the lights on” activities. This is a condensed version of the analysis Evergreen Systems (www.evergreensys.com) performed to develop a roadmap and ROI to achieve their objectives.
How to implement interoperability. Advantages and disadvantages. Presentation held by Mr. Johan Sys, within the first session of the FORUM „INFORMATION TECHNOLOGY IN GOVERNMENT”, dedicated to interoperability, held at Chisinau, January 16th 2012.
This presentation was given at GRC Conference in Boston (October 2010) and explains the interesting triad of not only People, Process & Technology but also Culture, Structure & Strategy. Besides, it moves beyond the 'alignment' idea and goes deep into the 'synchronization' needs of today's companies
IT service management (ITSM or IT services) is a discipline for managing information technology (IT) systems, philosophically centered on the customer\'s perspective of IT\'s contribution to the business. ITSM stands in deliberate contrast to technology-centered approaches to IT management and business interaction. The following represents a characteristic statement from the ITSM literature:
Providers of IT services can no longer afford to focus on technology and their internal organization[;] they now have to consider the quality of the services they provide and focus on the relationship with customers.ITSM is process-focused and in this sense has ties and common interests with process improvement movement (e.g., TQM, Six Sigma, business process management, CMMI) frameworks and methodologies. The discipline is not concerned with the details of how to use a particular vendor\'s product, or necessarily with the technical details of the systems under management. Instead, it focuses upon providing a framework to structure IT-related activities and the interactions of IT technical personnel with business customers and users.
3. Driving Service Management Outcomes
• Reduce downtime, lower time to
• Improve reliability
Datacenter
• Simplify the management of co
risk
SERVICE •
•
Provide choice and flexibility
Deliver efficient support,
NAGEME End User anywhere, anytime
• Increase responsiveness and
GOALS satisfaction
• Realize value of the IT investme
• Ensure IT governance, risk, and
Business • Adapt to ever-changing needs
of the organization
4. “Make sure that we comply so that we can focus on the business
…without an obscene cost” Board of
Audit Committee Dir./CEO
A
Regulatory Requirements “Based on a bewildering collection of reports, I must certify if we Regulatory Certification
“It’s too hard to interpret new regulations and sort out overlaps to
are compliant. It’s my butt on the line”
set policy across functions “
Business Objectives
& Policies “Every quarter I learn how non-compliant we have been last month Auditor
Reports
“Each business change brings new IT compliance requirements. – it’s like ‘whack a mole’, how do I get ahead of these issues and
80% are duplicative, but we review it all, delaying response and risk”
increasing cost.
Requirement Definition
Audit
Requirements
“System changes require regulation specific procedures slowing & Design
“These periodic audits kill me. What detail will the auditor want to
our response … Do we need more software to manage IT
check up on this time?”
System Management compliance?”
Review Log Files, Confirm
settings
System “Configuring and monitoring local and distributed servers and “Checking log files, re-confirming settings, documenting processes
Operations PCs for compliance is so time consuming” is a waste of time when I have truly critical things to do”
How do we interpret and test IT compliance across a vast
enterprise?
IT Pro
4
5. Compliance Requirements
SOX PCI EUDPP
Audit Committee Internal
Board of Au
COBIT ISO Policies Dir./CEO
Business Objectives
& Policies Microsoft Control library
O
Control Objectives
Control Activities
Control Testing Procedures
System Management
CMDB Comply/
Incident/
Authority Residual Risk
Issue Reports
Active Directory Reports
DW
Microsoft
(Partner)
System
Non-
Operations