Monday, May 15, 2006
Recent Thoughts on Compliance
The notion of compliance patterns as part of a compliance-oriented architecture could include representations for common problems among privacy regulations (concern for the individual), security (protection) and governance (transparency).
Software developers, auditors and Chief Security Architects could start having candid conversations about the problems an enterprise faces. The conversations could even be extended to regulators and maybe even the likes of Elliott Spitzer. Refactoring to patterns and the ability to "distill" the myriad of solutions and practices in this space down to a handful of archetypes seems useful.
I wonder which industry analyst firm will show leadership first in this regard...