CHAPTER 12: FINDING THE GLUE

What sticks

It is difficult to keep up with today’s corporate news without coming across “executives blinded by greed” or “malicious insiders.” Indeed, much of the drive behind compliance or security efforts, other than meeting mandated regulations or standards, centers on keeping the bad guys at bay. There’s no denying that management fraud exists, as does insider sabotage, but in adopting an “us vs. them” mentality, we mask deeper issues that cause organizations to go through cyclical firefighting cycles.

The obligation to comply with regulations, or fend off the bad guys, can only go so far. The March 2010 revelation of the Repo 105 accounting, employed by the now-defunct Lehman Brothers to temporarily remove securities ...

Get Compliance by Design: IT Controls that Work now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.