Comments for IT Governance Blog on IT governance, risk management, compliance and information security.

Comment on Global Payments suffers the wrath of a data breach by Merchant Account

Merchant Account — Wed, 04 Apr 2012 21:21:35 +0000

From what we know, the Global Payments hackers may have managed to gain access to Track 2 data, which includes the account number, the card’s expiration date and some other pieces of data, but not the cardholder’s name, address, SSN and the card security code. So cardholders should now be on a high alert for phishing attacks, which may be employed by the criminals as a way to obtain the missing data. Of course, that depends on the hackers having obtained their victims’ email addresses, which we don’t know.

Comment on What can we expect from CobiT 5? Part 1 by James Warren

James Warren — Tue, 03 Apr 2012 10:38:47 +0000

Hi Claire,

The reason I refer to ITIL more prominently than ISO 20000 is due to ITIL being more relevant to organisations looking to adopt a best practice approach to ITSM. There are only 300-odd organisations that have achieved ISO20k certification worldwide and to most organisations, achieving certification against the standard, isn’t a priority.

Regards,

Jamie.

Comment on What can we expect from CobiT 5? Part 1 by Claire Brereton

Claire Brereton — Mon, 02 Apr 2012 10:45:28 +0000

Hi Jamie,
Is there any particular reason you referred to ITIL rather than ISO/IEC 20000?
(Apart from the fact that it’s a shorter name)
Most of the other things you have referred to are standards and 20000 needs more promotion.

Comment on Top 5 Recommendations for the ITIL 2011 Updates by IT Support Manchester

IT Support Manchester — Wed, 21 Mar 2012 13:40:23 +0000

Interesting to read this I did my ITIL training but it was 6 years ago so well out of date. This site is really good resource will have a rethink.

Comment on Top 5 Recommendations for the ITIL 2011 Updates by Juan Vigo

Juan Vigo — Fri, 16 Mar 2012 12:32:16 +0000

Interesant points of view, in the service design we watch a new process, coordination.

Comment on Europe’s new approach to data protection by EUDataProtection

EUDataProtection — Thu, 23 Feb 2012 08:32:26 +0000

All of the information is on the official reform website here: http://ec.europa.eu/justice/data-protection/minisite/index.html

Comment on Latest DPA breach highlights the need for physical and cyber data protection by Data Protection

Data Protection — Wed, 08 Feb 2012 08:54:55 +0000

Charities as well as small businesses are being encouraged to invite an ‘advisory visit’ from the Information Commissioner’s Office to provide advice on issues relating to data protection. This is an alternative to a full-blown audit, and involves a one day visit from a member of ICO’s good practice team to see what they do with data and how they do it.

Comment on Learn how to Master your IT Service Management Projects by Melanie Watson

Melanie Watson — Thu, 05 Jan 2012 09:49:11 +0000

Hi Jeremy,

Thanks for your comment. The offer has now finished but if you choose to buy this toolkit, we will look out for your order and send you an ICT Strategy toolkit for free.

Kind regards,

Melanie

Comment on Learn how to Master your IT Service Management Projects by Jeremy Preet

Jeremy Preet — Thu, 05 Jan 2012 08:57:08 +0000

A timely info for me. But shame I just missed the promo that was available before Dec.23rd. Is there any promo the same as this for January 2012? Looking forward for the next one.

Comment on E-mail Security – your guide to protecting valuable information by James Warren

James Warren — Tue, 03 Jan 2012 09:12:34 +0000

Hi, you can purchase this book from within India using this URL: http://blog.itgovernance.co.uk/e-mail-security-your-guide-to-protecting-valuable-information/

Comment on E-mail Security – your guide to protecting valuable information by Rushit

Rushit — Fri, 30 Dec 2011 12:00:11 +0000

How can i order from India

Comment on E-mail Security – your guide to protecting valuable information by Rushit

Rushit — Fri, 30 Dec 2011 11:59:39 +0000

Kindly let me know how can i order this books from India.

Thanks,

Comment on Free Presentation with The Colin Bentley PRINCE2 Practitioner Bundle! by James Warren

James Warren — Fri, 09 Dec 2011 08:09:32 +0000

Hi Francis, the offer includes Friday so please go ahead with the purchase then we’ll send you the download link. I have ammended the broke link, thanks for making us aware. Here’s the URL: http://www.itgovernance.co.uk/products/355

Regards,

James.

Comment on Free Presentation with The Colin Bentley PRINCE2 Practitioner Bundle! by Francis van Zutphen

Francis van Zutphen — Fri, 09 Dec 2011 05:20:43 +0000

Hello,

Will I still qualify for the FREE presentation of Colin’s webinar, 1st december,
entitled PRINCE2 for Small Projects if I place my order today, Friday 9 December?

The advert states that I must place the order BEFORE Friday 9th december in order to qualify for the FREE webinar.

Also when I hit “Add to Basket”, via http://blog.itgovernance.co.uk, I get the following error message: “Server Error in ‘/’ Application.”

Comment on Breaking the Addiction to Process: An Introduction to Agile Project Management by PM Hut

PM Hut — Tue, 06 Dec 2011 12:03:10 +0000

I like the first part of the title of the book “Breaking the addition to the process”, there are many project managers out there (from all camps: Agiel, Waterfall, etc..) who are really addicted to the process, and who prioritize the process over the success of the project.

Comment on eBook for the Weekend Special Offer: IT Strategic and Operational Controls by Melanie Watson

Melanie Watson — Mon, 21 Nov 2011 12:07:07 +0000

Hi Jerry,

Thanks for getting in touch with us. Yes, this book is available as an eBook for you to download straight away at: http://www.itgovernance.co.uk/products/3067

All the content that is covered in the book is converted into the eBook so you won’t miss out on anything.

Kind Regards,

Melanie

Comment on Tips from the experts: IT Security Awareness Week by Jerry

Jerry — Sat, 19 Nov 2011 13:20:19 +0000

This is a good collection of solid advice. I can’t help think though of two other ideas. First, FUD doesn’t improve security. Second, stop preparing for yesterday’s security issue.

Comment on eBook for the Weekend Special Offer: IT Strategic and Operational Controls by Jerry

Jerry — Sat, 19 Nov 2011 03:20:55 +0000

Melanie the description sounds like the book includes some good audit tools and materials I could use right away. Do you know if they convert easily from the eBook format?

Comment on A step by step guide to achieving PCI DSS compliance by Jerry

Jerry — Sat, 19 Nov 2011 03:15:08 +0000

From you comments and the book summary it does sound like it would be a good resource for product development managers and compliance officers. After all, we all know PIC DSS is not an easy program so anything that simplifies it for a few pounds has to be worth the read.

Comment on IT non-compliance – avoid the fines by Jerry

Jerry — Fri, 18 Nov 2011 20:23:43 +0000

We deal with similar issues here in the States trying to keep track of compliance maze created by our federal and state governments. We have so much overlap and inconsistency it is an absolute nightmare. It can be much worse if you have international compliance exposures on top of that. Seems like at some point there should be a way to see them in the aggregate to make it simpler.