Monday, May 15, 2006
Recent Thoughts on Compliance
Why aren't industry analysts talking about the notion of compliance patterns?
The notion of compliance patterns as part of a compliance-oriented architecture could include representations for common problems among privacy regulations (concern for the individual), security (protection) and governance (transparency).
Software developers, auditors and Chief Security Architects could start having candid conversations about the problems an enterprise faces. The conversations could even be extended to regulators and maybe even the likes of Elliott Spitzer. Refactoring to patterns and the ability to "distill" the myriad of solutions and practices in this space down to a handful of archetypes seems useful.
I wonder which industry analyst firm will show leadership first in this regard...
| | View blog reactionsThe notion of compliance patterns as part of a compliance-oriented architecture could include representations for common problems among privacy regulations (concern for the individual), security (protection) and governance (transparency).
Software developers, auditors and Chief Security Architects could start having candid conversations about the problems an enterprise faces. The conversations could even be extended to regulators and maybe even the likes of Elliott Spitzer. Refactoring to patterns and the ability to "distill" the myriad of solutions and practices in this space down to a handful of archetypes seems useful.
I wonder which industry analyst firm will show leadership first in this regard...
