Search

Deal with the Insider Threat by Monitoring User Access of Sensitive Data While the headlines focus on malware, cyber breaches and ransomware, enterprises also must keep track of current and former employees and contractors. This is because the insider threat is the most cited culprit of incidents according to the 2015 PwC Global State of…

What Is Cyber Threat Intelligence? As the IT risk landscape continues to evolve and change at such as rapid pace, the ability to leverage threat intelligence big data in real-time provides organizations with a more proactive and preventative approach to security.  The vast volumes and velocity of activity and transactional data that is being generated…

How Sharp Electronics Simplifies SoD Management From electronics to appliances and more, consumers and businesses around the world watch, listen, communicate, and work using Sharp Electronics. With operations crossing multiple countries and markets, protecting company systems and data is a must. But understanding the financial exposure risks of improper access governance and segregation of duties…

Is it better to implement a preventative or detective control environment that can identify and determine the correction to a control violation? Well, that depends. Which would you rather sell to management, the prevention or the cure? But remember the old saying, “What if the cure is worse than the disease?” Preventive controls are designed…

How to Reduce Access Risk Across Your SAP Application Landscape Managing appropriate access across applications continues to be a challenge. Siloed approaches can lead to increased risk due to improper access that is not identified and corrected quickly, as well as inefficiencies due to manual provisioning across these applications. In addition, compliance can become problematic…

Addressing The Gaps In Application Security Applications such as ERP, HR/Human Capital Management, CRM/Sales Automation, eCommerce and Supply Chain Management are the lifeblood of a company and contain valuable data that is needed to process business transactions. They are also targets for cybercrimals and insider abuse that can cause major losses across data/IP, employee productivity,…

To Rationalize & Harmonize Controls Requires Correlation Unified Compliance Framework® (UCF) has done a lot to rationalize the growing number of compliance and industry controls, avoiding a duplication of controls. The Common Controls Hub simplifies the need to locate, research, interpret, and reconcile new and evolving mandates by giving compliance professionals the ability to centrally…

Enable Exception-based Access Violation Monitoring In most organizations, a certain level of Segregation of Duty (SoD) violations must be accepted for the business to function efficiently, and mitigating controls are implemented to address the remaining risk. Those controls, however, are typically manual in nature, and locating actual exceptions is like searching for a needle in…

Adding Value to Identity & Access Governance Technologies to automate Identity Management (IDM), Access Request Management (ARM), Identity & Access Governance (AG), or access review and certification as it’s known in plain English, have been around for years, yet still have not been able to address user access risk in real-time.  Why you ask?  Let’s…