Sun, Deloitte Team On Compliance

The initiative combines Deloitte's consulting and advisory services with Sun's IT management wares.

Compliance Pipeline Staff, Contributor

February 21, 2006

2 Min Read

Sun Microsystems Inc. and Deloitte today revealed a collaborative initiative to combine and services to help companies address regulatory compliance and technology governance.

As part of this initiative, Sun and Deloitte today unveiled plans for the Center for Technology Governance and Compliance (CTGC). Access to the professionals and services within the CTGC is available through Sun Solution Centers.

Sun is positioning its information lifecycle management (ILM) and identity management software portfolios as the key technology components of the framework for implementing governance and compliance strategies and programs.

"In this time of heightened expectations for information quality, companies need to shift their thinking from a tactical, short-term approach to compliance toward a more strategic, sustainable approach that includes improved governance, standardized processes and enabling technologies," said Lee Dittmar, principal and national leader of Deloitte Consulting's Enterprise Governance practice. "Sun's technologies can be leveraged to build solutions for integrating compliance into clients' daily operations, building accountability into the IT operation and improving long-term business performance."

The CTGC will assist companies in integrating methodologies and frameworks driven by regulatory oversight requirements, such as Sarbanes-Oxley, industry requirements such as the Health Insurance Portability and Accountability Act (HIPAA), and frameworks such as Committee for Sponsoring Organizations (COSO), Control Objectives for Information Related Technology (COBIT), the IT Infrastructure Library (ITIL) and BASEL II.

The CTGC will provide four primary components:

  • A business, process, and technology assessment of a company's current compliance initiatives, resulting in specific recommendations to help prioritize actions to mitigate risk, efficiently sustain compliance, help meet privacy and governance requirements, and establish effective practices for long-term technology governance.

  • A security methodology to enable user access controls and segregation of duties that facilitates organizational efforts to enhance processes for granting user access to applications and information, and provides reporting tools and mechanisms to support periodic reviews and confirmation of user access rights.

  • An information governance methodology that captures, classifies, archives, retrieves, and purges appropriate corporate electronic records to comply with regulatory mandates, also enabling electronic discovery and mitigating legal risk.

  • A controls methodology to provide visibility into the compliance operations of an enterprise. This includes preventative and detective monitoring of ERP and other systems for configuration changes and policy violations as well as remediation procedures and workflow tracking.

About the Author(s)

Compliance Pipeline Staff

Compliance Pipeline Staff

Contributor

See more from Compliance Pipeline Staff
Never Miss a Beat: Get a snapshot of the issues affecting the IT industry straight to your inbox.
SIGN-UP

You May Also Like

More Insights
Webinars
More Webinars
Reports
More Reports

Editor's Choice

cybercrime abstract with two locks
Cyber Resilience
10 Cyber Incident Response Tips From Those Who've Had a Breach and Lived to Tell About It10 Cyber Incident Response Tips
bySara Peters
May 8, 2024
6 Min Read
DNA (deoxyribonucleic acid) strand, illustration.
Data Management
DNA is an Ancient Form of Data Storage. Is it Also a Radical New Alternative?DNA is an Ancient Form of Data Storage. Is it Also a Radical New Alternative?
byRichard Pallardy
May 7, 2024
15 Min Read
Paul Nakasone, former director of the National Security Agency, and a former commander of US Cyber Command, speaks at the RSA Conference 2024.
Cyber Resilience
Four Horsemen of Cyber Reunite at the RSA ConferenceFour Horsemen of Cyber Reunite at the RSA Conference
byJoao-Pierre S. Ruth
May 9, 2024
6 Min Read
Technologist and author Bruce Schneier addresses the crowd at RSA Conference 2024 about the future impacts of AI on democracy.
Machine Learning & AI
Bruce Schneier: 5 Ways AI Could Shake Up DemocracyBruce Schneier: 5 Ways AI Could Shake Up Democracy
byShane Snider
May 8, 2024
6 Min Read
Business innovative solution and creative concept as a paper boat tied to a light bulb
IT Leadership
9 Ways to Ensure Continuous Innovation9 Ways to Ensure Continuous Innovation
byLisa Morgan
Apr 2, 2024
9 Slides
Webinars
More Webinars
White Papers
More White Papers
Live Events
More Live Events
Reports
More Reports
May 2, 2024
While there are plentiful options in cyber resiliency and business continuity tools and platforms, there isn’t one that can knock out everything from sudden cloud outages to prolonged ransomware attacks in a single punch. What can you do to keep the company on its feet no matter what is thrown at it? Find out in this new virtual event.
Reserve Your Seat Now