Point, Counterpoint: Security Compliance and Regulations

Private and public regulations are getting new teeth in 2008, but how and even if enterprises should implement them is the subject of this lively debate between eWEEK Labs Technical Director Cameron Sturdevant and Baseline editor Lawrence Walsh, which took place April 15 at the Ziff Davis Enterprise CIO Summit. Their topics: the Federal Desktop Core Configuration requirements; how to control compliance activities to meet audit requirements without breaking the bank or the backs of your IT staffers, and new PCI (Payment Card Industry) milestones. While Sturdevant advocates doing as much as possible within budget and staff restraints, Walsh questions the need and efficiency of security audits.