To celebrate the 10th anniversary of Cybersecurity Awareness Month, Ed discusses strategies to align information security and compliance efforts in his column on SearchCompliance:
This situation has the potential to lead to an adversarial relationship between the compliance and security departments. Compliance teams sometimes feel that their concerns go unheeded, for example, when a requirement remains unaddressed despite investment in other areas. By contrast, technical or security personnel may look at compliance activities as siphoning budget from investments that reduce technical risk. This can be a challenging situation, but there are strategies to help overcome these hurdles or even ensure that they don’t arise in the first place.
Check out the full article here: http://searchcompliance.techtarget.com/tip/Three-strategies-to-align-organizational-compliance-and-security-goals