compliance Articles - Perficient Blogs
Blog

Posts Tagged ‘compliance’

  • Topics
  • Industries
  • Partners

Explore

Topics

Industries

Partners

DevSecOps and Release – Security Architect

In my previous post, DevSecOps and Release Coordination, I introduced the idea of four key players in the DevSecOps mediated release management process. The idea is to consolidate the validation and approval steps from a “gated” process, and shift the actual work of validation earlier in development. In this post, we will explore the role […]

Read more

Cloud Resource Security – Shared Responsibility Model

In my previous post on Cloud Resources – Policy and Practice, I referenced the “shared security model” adopted by all cloud providers. In this post, we will dive deeper into the differences and consequences of sharing the responsibility for securing computing resources, applications, data, and networks. Whether your organization is extending into cloud-based resources or […]

Read more

Security and Compliance in Microsoft Teams

Whether your company has 10 people or 10,000 people, security measures need to be in place to ensure a safe, secure, and compliant environment for your end users. Many companies will often be required to adhere to certain security regulations and compliance standards but rest assured Microsoft has your back.  Microsoft understands this need for […]

Read more

Getting Started with California Consumer Privacy Act Compliance

Compliance with the CCPA requires robust processes for identifying, governing, distributing, and securing consumer personal information. The first steps are to document the current usage of this information: Data inventory: Generate lists of personal data related to clients, investors, employees, counter parties, prospects and other entities. Data recipients: Compile a list of entities, such as […]

Read more

GDPR Compliance – Encryption

On 25th May 2018, everybody woke up to find their inbox “spammed” with mails from companies about redefining their data privacy policies containing the term GDPR. Every site that one logged into had a pop up, “We have updated our Data Privacy Policy”. So, what is this all about? Small Word, Big Impact It is […]

Read more

Expect Challenges with the California Consumer Privacy Act

Compliance with the CCPA will be challenging because it represents major changes in how financial institutions conduct their business. DATA DISPERSION Consumer personal data is often scattered across multiple internal platforms and shared with many third parties. Firms may not have a full picture of where this information is stored and how it is controlled. […]

Read more

Key Takeaways About Compliant IT Systems In The Cloud

This is the final post in our series on maintaining regulatory-compliant IT systems in the cloud. In this post, we’ll go over the key takeaways from the series and then we’ll send you on your way! Regardless of how much control you have over your IT systems, if you are using them for regulatory purposes, […]

Read more

Tips And Best Practices For Compliance In The Cloud

As we’ve learned in the previous posts in this series, having a thoughtful, thorough cloud vendor qualification process and intelligent SLAs in your cloud vendor contracts will help you maximize the value of the cloud while maintaining regulatory compliance. In addition, here are some tips and best practices to help you knock it out of […]

Read more

How To Use Contracts For Regulatory Compliance Of Cloud Systems

In my previous post in this series, we discussed how to qualify cloud vendors. Once that process is complete, the second step to maintaining compliance is to document your specific regulatory requirements in a contract with the cloud vendor, usually in the form of service-level agreements (SLAs). In this blog post, I include a range […]

Read more

How To Qualify Cloud Vendors

We recently completed a 21 CFR Part 11 gap analysis engagement for a client that was largely using SaaS applications, but had no cloud vendor qualification process in place. They had just been allowing each business unit to select the applications that met its user requirements, accept whatever validation documentation the cloud vendor supplied (if […]

Read more

Who Is Responsible For The Compliance Of Cloud Systems?

Any time you take advantage of a cloud service – infrastructure, platform, or software – for a regulated purpose, you are ultimately responsible for its regulatory compliance, not the cloud vendor. This is critical for you to remember. So, how can you ensure regulatory compliance of a software system you did not build, you do […]

Read more

Cloud-Hosted Terminology: Types Of Systems

As we continue our series on maintaining regulatory-compliant cloud systems, let’s touch on a few key terms. Below are explanations of the primary cloud-hosted offerings available in the market. Infrastructure-as-a-Service (IaaS) When you purchase a software system and opt to have a vendor host it for you instead of installing it on servers you own, […]

Read more

Refresher: Which IT Systems Are Regulated

If your company makes drugs, medical devices, or biologics (vaccines, blood and blood components, allergenics, somatic cells, gene therapy, tissues, and recombinant therapeutic proteins), it is regulated. If your company is regulated, then every IT system you use to design, develop, conduct trials, manufacture, package, label, store, distribute, install, or service your products is also […]

Read more

Microsoft Teams eDiscovery for Teams users in Exchange Hybrid

Exchange hybrid environment users rejoice! Microsoft Teams now supports eDiscovery, Compliance Content Search, Review and Export for Teams users with your setup! In this article I will discuss: How this setup works Why Microsoft has chosen to support this How you can get enabled if you fit into this group How the heck does this […]

Read more

SEC Investment Company Reporting Modernization Support

The first thing any investment company must do in response to the new SEC Investment Company Reporting Modernization is evaluate its current state of readiness. Chances are you have started a compliance program. However, we can help you understand your gaps, including areas where you need immediate action and longer-term changes to support the program. […]

Read more

SEC Investment Company Reporting Modernization Program Challenges

In a new guide, we discuss the background of the SEC’s Investment Company Reporting Modernization Rules and the potential effects on individual financial institutions. The snippet below talks about the challenges you can expect when developing a response program. Expect challenges in various areas: Data Availability: All required data elements may not be available internally. […]

Read more

Maintaining Regulatory-Compliant Cloud Solutions

The benefits of cloud hosting – including Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS) – are very clear: less upfront capital, faster implementations, scalability and elasticity, and no need for individual companies to maintain physical space, hardware, and/or technical staff for support. But there are also several risks to consider, including physical and technical security, […]

Read more

SEC Investment Company Reporting Modernization Foundational Work

In a new guide, we discuss the background of the SEC’s Investment Company Reporting Modernization Rules and the potential effects on individual financial institutions. The snippet below talks about the foundational work companies should have already completed. By now, you should have a program in place that covers the following work streams: Engage Report Filing […]

Read more

SEC Investment Company Reporting Modernization Deadlines

In our new guide, we discuss the background of the SEC’s Investment Company Reporting Modernization Rules and the potential effects on individual financial institutions. While you can check out the full guide here, the snippet below shares some of deadlines that the new rules present. Form N-PORT If you are a larger entity with net […]

Read more

Streamlining the Manufacturing and Automotive Treasury Function

The strategic vision of the manufacturing and automotive treasury function is to deliver efficiency, control, and scalability. The logical structure for this transformation includes several key components: business events, centralized demand deposit accounts with banking connectivity, and a reporting data warehouse. A comprehensive finance and treasury transformation program can help improve cash and liquidity management, […]

Read more

Subscribe to the Weekly Blog Digest:

Sign Up