Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security, Continuity & Compliance Gordon McKenzie Business Development Director, Syan Limited.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Security, Continuity & Compliance Gordon McKenzie Business Development Director, Syan Limited."— Presentation transcript:

1 Security, Continuity & Compliance Gordon McKenzie Business Development Director, Syan Limited

2 What’s it all about? Legislation Regulation/Directives Standards and Accords Greater disclosure and openness

3 What’s it all about? REGULATORY COMPLIANCE  Sarbanes-Oxley  Basel II  Global Privacy Directives It’s not just SOX Sarbanes-Oxley only directly affects approximately 400+ companies in Europe: Not just the largest – just those listed in the US

4 What’s it all about? RISK MANAGEMENT  Legal Liabilities  Brand Value Protection  Stakeholder Satisfaction  Financial Performance Protection

5 And if you don’t? Regulator attention Fines Higher auditing bills Reduction in brand image Failing investor confidence  reduced share price  potentially terminal Lower credit rating  higher cost of capital Legislation breach – Prison!

6 Businesses don’t want to comply! Businesses exploit loopholes Compliance is a cost Compliance creates level playing fields That is why we have legislation / regulation

7 Butler Group’s Compliance Matrix

8 Technology of Compliance Business Process Management Collaboration Digital/E-mail Archiving Disaster Recovery Content Management, including Email & Records Management Business Intelligence/Analysis Corporate Performance Management Search/Discovery/Retrieval Identity Access Management Network Security Policy Management Profiling INFORMATION MANAGEMENT INFORMATION ANALYSIS INFORMATION SECURITY

9 What does it mean? The information needs to be available –To the right people –At the right time Reports must be out on time Lost data is not an excuse Neither is a broken system or a network failure Disasters can (and will) happen Information needs to be managed

10 Traditional Disasters… But you must try to protect against all eventualities

11 What is a disaster? Not just natural disasters Anything that has the potential to damage your business can be classed as a disaster

12 Data must be protected Customer Data  Personal Data Files  Financial Records / Credit History  Medical History Employee HR Data  Employment History  Employee Reviews  Wage/Salary Structures  Health Records

13 Assets must be protected Intellectual Property  Research and Development Product designs and cost budgets  Business Methods and Best Practices  Proprietary Source Code  Specific Project Data  Proposals and Price Lists  Marketing plans, advertising and packaging

14 Information must be available High Availability Disaster Recovery Business Continuity Many different solutions

15 Windows Syan’s Availability Solutions pSeries HACMP HACMP-XD Storage ESS & DS Family Tivoli Linux Disaster Recovery and Business Continuity Facilities iSeries Networks Intel

16 It’s not just about the data Secure and managed access Secure and managed infrastructure Secure and managed record of all process: –Ensuring consistency –Keeping all the doors bolted

17 You can’t outsource it! You can outsource the service – but not the responsibility –The outsourcer will not stand alongside you in court But if managed properly outsourcing can help

18 What can you outsource? Everything but the responsibility Decide what your business is about? Do you want to be a delivery company? Do you want to be a warehousing company? Do you want to be an IT company? What services could be done better by specialists? And then choose someone you can trust – your business will depend on it

19 BS7799 / ISO17799 Big investment But a big saving when being audited "We always believed that Syan was doing things right and, following the SOX audits, we now know that they are. If Syan had failed the audits, then we would have failed.“ Anthony Mitchell, Network Administrator for Gardner Denver International

20 The Specialists in IT Outsourcing and IBM eServer Solutions Visit www.syan.co.uk for more information about Syan’s Services

Download ppt "Security, Continuity & Compliance Gordon McKenzie Business Development Director, Syan Limited."

Similar presentations

IT Security Policy Framework

IT Security Policy Framework
University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.

University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.
Driving change in information risk within the financial services industry Subtitle Date.

Driving change in information risk within the financial services industry Subtitle Date.
IAPP 2004. 2 CONFIDENTIAL Insider Leakage Threatens Privacy.

IAPP CONFIDENTIAL Insider Leakage Threatens Privacy.
In Harmony, In the Cloud: Harmonizing Data Protection Rules In a Cross-Border World Steve Mutkoski Worldwide Director Policy Microsoft Corporation.

In Harmony, In the Cloud: Harmonizing Data Protection Rules In a Cross-Border World Steve Mutkoski Worldwide Director Policy Microsoft Corporation.
Health Insurance Portability and Accountability Act (HIPAA)HIPAA.

Health Insurance Portability and Accountability Act (HIPAA)HIPAA.
IS BIG DATA GIVING YOU A BIG HEADACHE? Risk Reduction - Transactional, International and Liability Issues Oregon State Bar Corporate Counsel Section Fall.

IS BIG DATA GIVING YOU A BIG HEADACHE? Risk Reduction - Transactional, International and Liability Issues Oregon State Bar Corporate Counsel Section Fall.
Forces of Change Don H. Hansen Health Care Services Partner 425.303.3013.

Forces of Change Don H. Hansen Health Care Services Partner
Iron Mountain’s Email Continuity Service ©2006 Iron Mountain Incorporated. All rights reserved. Iron Mountain and the design of the mountain are registered.

Iron Mountain’s Continuity Service ©2006 Iron Mountain Incorporated. All rights reserved. Iron Mountain and the design of the mountain are registered.
Information Security Policies Larry Conrad September 29, 2009.

Information Security Policies Larry Conrad September 29, 2009.
Security Controls – What Works

Security Controls – What Works
© The McGraw-Hill Companies, Inc., 2008 McGraw-Hill/Irwin Chapter 14 Regulating the Financial System.

© The McGraw-Hill Companies, Inc., 2008 McGraw-Hill/Irwin Chapter 14 Regulating the Financial System.
Managing Risk Minimising Insurance Risks –Legal requirements –Premises –Equipment –Employees –Theft and fraud –Transport –Insuring the risks Risk Management.

Managing Risk Minimising Insurance Risks –Legal requirements –Premises –Equipment –Employees –Theft and fraud –Transport –Insuring the risks Risk Management.
© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.

© 2006 IBM Corporation Introduction to z/OS Security Lesson 9: Standards and Policies.
SOX & ISO 27001 Protect your data and be ready to be audited!!!

SOX & ISO Protect your data and be ready to be audited!!!
Cloud Computing Stuart Dillon-Roberts. “In the simplest terms, cloud computing means storing & accessing data & programs over the Internet instead of.

Cloud Computing Stuart Dillon-Roberts. “In the simplest terms, cloud computing means storing & accessing data & programs over the Internet instead of.
MICROSOFT AZURE ISV PROFILE: BUYING BUTLER LTD Our free concierge buying service makes complex purchases easy. Our first category is cars: We help consumers.

MICROSOFT AZURE ISV PROFILE: BUYING BUTLER LTD Our free concierge buying service makes complex purchases easy. Our first category is cars: We help consumers.
INSURANCE How it works… Why YOU need it…. ALL ABOUT RISK The chance of financial loss from some type of danger RISK MANAGEMENT AVOID THE RISK – Don’t.

INSURANCE How it works… Why YOU need it…. ALL ABOUT RISK The chance of financial loss from some type of danger RISK MANAGEMENT AVOID THE RISK – Don’t.
Overview of Cybercrime

Overview of Cybercrime
Enterprise Computing Community June 13 - 15, 2010February 27, 2010 1 Information Security Industry View Linda Betz IBM Director IT Policy and Information.

Enterprise Computing Community June , 2010February 27, Information Security Industry View Linda Betz IBM Director IT Policy and Information.

Similar presentations

Ads by Google