Foration Blog

Does compliant IT mean you need compliant IT support?

With multiple high-profile cases of hacking, data leaks and security breaches making headlines, IT managers face tough and often expensive choices to ensure that data is stored correctly, permissions are set, and the correct laws are enforced. However, compliance within your IT systems is only half the battle. Compliant IT support teams are just as important for keeping data and systems protected from breaches or loss. Below, Foration identifies several ways that your support team can help in the fight to keep your data and systems secure.

Jargon-Buster: Foration's glossary of IT Compliance terms

With high-profile cases of cybercrime and data leaking on the rise, now more than ever it’s important to ensure that your business and users are keeping up with the latest in IT and security compliance rules.

From keeping your user data safe to complying with governmental data storage requirements, having strict guidelines in place is essential for ensuring the smooth running of your organisation and for preventing mistakes.

With a lot of talk of compliance and security online these days, however, it’s easy to get confused by all the terms and jargon being used in the industry. To help clear things up, whether you’re an IT business support manager or a curious novice, here is our glossary of the key IT compliance terms:

BYOD isn't your only IT compliance challenge

A combination of changing business culture, the rapid evolution of technology and the tightening of regulation means that maintaining IT compliance in the eyes of bodies such as the Financial Conduct Authority (FCA) is a full-time consideration. For many companies, the challenge of compliance is brought into sharp focus by the adoption, in whole or part, of a Bring Your Own Device (BYOD) culture within the organisation.

While BYOD policies have fairly well documented cost, productivity, and practicality benefits, it also poses very real challenges to data security, protection, and your overall compliance.

What can we learn from China's "Draconian" cyber-security bill?

In November of last year, China’s parliament rubber-stamped a controversial cyber security law. The legislation, which is due to become effective from June 1 2017, is designed to combat what the Chinese government regards as the critical threats of hacking and cyber terrorism.

In effect, those businesses who wish to make inroads into the Chinese market are faced with a choice: either comply with the new rules (thereby allowing the Chinese authorities access to proprietary information which was previously private) - or bar themselves from the market.

Foration's Tips and Predictions for Compliant IT in 2017

As we approach the end of a year of dramatic change, attention turns to the future. To look at the coming year and what it may hold in store for IT services. Particular attention will be in relation to IT compliance. The need for systems and organisations to operate on the right side of the regulations in an era of data protection and cyber-threats will be more acute than ever.

A definitive checklist for compliance in cloud data storage

“The use of outsourcing to the cloud and other third party IT services can have a positive impact on competition in financial services”

This quote, taken from the current FCA guidelines on cloud-based data storage, highlights the idea that, not only are cloud-services approved, but they can bring significant benefits.

6 steps to FCA-compliant data storage

If you’re a company who operate under the compliance regulations of the Financial Conduct Authority (FCA) then you need to be aware of your responsibilities when it comes to storing data. Ensuring that all reasonable measures have been implemented in relation to the safety, security and integrity of data is a critical component of your corporate diligence and duty. The FCA making this point abundantly clear on their data compliance fact sheet, available via their website.

Is Office365 FCA-compliant?

The most recent Financial Conduct Authority (FCA) guidelines, published in November 2015 highlights specific criteria that needs to be met by financially regulated companies who are migrating their IT systems to the cloud, in whole or in part.

The authority make clear they allow for the use of cloud-based services, including public services such as Office 365, saying:

"We see no fundamental reason why cloud services (including public cloud services) cannot be implemented"

10 questions to ask your cloud provider about FCA compliance

While the Financial Conduct Authority (FCA) have given their approval for companies to outsource their IT and data storage to third party cloud providers, the consent comes with a number of guidelines, issued to ensure that such providers remain compliant.

Why your mobile is not safe.

So you have just got the latest and greatest mobile phone, only to have the buzz shift a week later to the new model that has just been announced.

Subscribe to our Blog

Recent Posts