Which teams have a role in deciding which compliance technology to purchase?

Architecture Strategy

Security44%

IT80%

Legal43%

Compliance (We have a dedicated leader)23%

Other

622 PARTICIPANTS

6.2k views2 Upvotes3 Comments

Sort by:

Chief Technology Officer and Chief Information Officer4 years ago

If you have a team for Compliance then decision falls into their domain. Otherwise I see no purpose in having such a team. They also should take care of gathering enough information from other teams in regards to Security and IT running cost.

Technology Strategist in Software4 years ago

You have to take everyone on the journey otherwise the tool becomes and island

Fractional CIO in Services (non-Government)4 years ago

What's the definition of Compliance here? Is it a) ensuring that the company remains compliant with local regs and laws, or b) is it measuring and monitoring that staff remain compliant with their job expectations?

If it's a) then you have a good list there. If it's b) then you're missing HR

Content you might like

What would you rather have MBA or CISSP? Why?

MBA / Master's Degree72%

CISSP / Comparable Certification27%

Has anyone been successful in implementing a FinOps Cost Optimization policy to turn down idle cloud instances during off hours (nights/weekends)? DId you start with non-prod environments? How are you handling logging/monitoring alerts during that time?

What advanced identity analytics or continuous access controls is your organization using (or planning to implement)? Any lessons learned you can share regarding vendor selection or implementation?

I would like to hear from others that have implemented SailPoint Identity Security Cloud how they staffed after go-live and skills needed. Were there added duties, change in roles, etc. We have provisioners currently and going live with ISC in a few weeks. I am looking ahead to where I can implement role changes with the team. Any help would be appreciated.

What’s your top barrier to adopting AI-driven pentesting?

Lack of mature vendor solutions49%

Trust in AI accuracy67%

Budget constraints20%

Skills to operate the tools25%

View Results

Which teams have a role in deciding which compliance technology to purchase?

Sort by:

Content you might like

What would you rather have MBA or CISSP? Why?

Has anyone been successful in implementing a FinOps Cost Optimization policy to turn down idle cloud instances during off hours (nights/weekends)? DId you start with non-prod environments? How are you handling logging/monitoring alerts during that time?

What advanced identity analytics or continuous access controls is your organization using (or planning to implement)? Any lessons learned you can share regarding vendor selection or implementation?

What’s your top barrier to adopting AI-driven pentesting?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

CrowdStrike Outage: Impact And Recovery

DevSecOps: Strategies, Organizational Benefits and Challenges

Green Cloud Computing

Omnicloud: The Future of Cloud Computing?

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go