Analysis of development control regulations’ compliance in ...
Evolving with Corporate IM Compliance Regulations
1
IM COMPLIANCE REGULATIONS WITH CORPORATE EVOLVING & WHY COMPANIES USE THEM FEATURES & BENEFITS OF CORPORATE IM • Real-time Communication • More immediate, less time consuming than email • Less disruptive than phone • Allows group collaboration, replacing long email chains • Detects presence • Can send files and attach/preserve with the converastion msp • Saves server space (over email) • Easy to implement – few barriers to entry or use • Available on multiple devices - desktop/mobile/tablet THE EVOLUTION OF CORPORATE IM USAGE Worldwide IM accounts are expected to grow from over 3.4 billion in 2013 to over 4.4 billion by year-end 2017, representing an average growth rate of about 7%. One in three IM users now utilize IM as much or more than e-mail, and many predict that IM usage will outstrip e-mail usage within the next few years. 85% More than 85% of all businesses and organizations now make use of IM. 20-25% report improvement in productivity. TWO CORPORATE VENDORS • Integration across MS IT Suite (coexist plan) • Can deploy for IM/Presence and ad-hoc web-conferencing then expand later to VOIP Network • IM/Presence • Can use strictly as a soft phone, or strictly as IM/P, or both • Cloud and On-Premise solutions offered • Can provide IM/P to inter/intra domain federations with other enterprise systems • Lync Skype federation allows users to IM/P & talk between the two • Integration into other Collaboration products such as WebEx, Calendar, and MS Office • Can easily escalate communications from IM/P to voice to video to WebEx meeting GENERAL IM CONVERSATION REGULATIONS 30% of companies using IM have a way of tracking and archiving these communications 40% of companies polled do not have a system of keeping the history or a searchable archive in-house IM is often overlooked as a crucial piece of information management 30% 40% ! Simply blocking all IM or P2P services would place these businesses at a competitive disadvantage in the marketplace. The preferred solution is to allow properly controlled use of these services. Availability Confidentiality Integrity Excess litigation costs Loss of customer confidence Loss of intellectual property The top three information governance failure risks Maintain, protect, and assess compliance issues Establish and implement controls Identify and remediate vulnerabilities and deviations Provide reporting that can prove your organization's compliance At the heart of most regulations is the intention of protecting the information that impacts a corporation's stakeholders These laws can be distilled down to their essential goals INDUSTRY SPECIFIC REGULATIONS Regulated industries are required to preserve and keep accessible and expanding volume of records across endless systems used for internal communications and customers. Financial Services - FINRA Requires that all instant messages be retained and retrievable Government – Freedom of Information Acts Requires that agencies produce copies of instant messages upon requests General Business Requires you to produce records within a reasonable time frame upon receipt of a subpoena or other valid request WHAT DOES IT TRULY TAKE TO BE COMPLIANT MPS WITH THESE MANDATES? DOES SIMPLY STORING RECORDS IN A DATABASE MAKE YOU COMPLIANT? NO! Compliant! Audit Trail Prove your records are complete and unmodified Digital Signatures Verify the integrity of your records Compatibility with third-party compliance products Integrate your IM compliance solution to one platform for UC compliance Access/Security Manage identities and authenticate users Delegation of Duties Assign administrative and end-user rights/roles to your records Legal Hold/Litigation Hold Save your records indefinitely, overriding other controls Compliance Warning Message Alert users that their instant messages will be stored; trigger alerts/controls when security or compliance is breached ! As you can see, compliance requires much more than just storage. It is critical that you research your options before settling on a free or low cost solution. The true cost of the wrong solution can be enormous. F me infmati about ISI’s IM Compliance: WWW.ISI-INFO.COM © Copyright 2015 ISI Telemanagement Solutions, Inc. 1051 Perimeter Dr, Ste 200 Schaumburg, IL 60173
-
Upload
isi-telemanagement-solutions-inc -
Category
Software
-
view
42 -
download
2
Transcript of Evolving with Corporate IM Compliance Regulations
IM COMPLIANCE REGULATIONSWITH CORPORATE
EVOLVING
& WHY COMPANIES USE THEM
FEATURES & BENEFITS OF CORPORATE IM
• Real-time Communication• More immediate, less time consuming than email• Less disruptive than phone• Allows group collaboration, replacing long email chains• Detects presence• Can send files and attach/preserve with the converastion msp • Saves server space (over email)• Easy to implement – few barriers to entry or use• Available on multiple devices - desktop/mobile/tablet
THE EVOLUTION OF CORPORATE IM USAGE
Worldwide IM accounts are expected to grow from over 3.4 billion in 2013 to over 4.4 billion by year-end 2017, representing an average growth rate of about 7%.
One in three IM users now utilize IM as much or more than e-mail, and many predict that IM usage will outstrip e-mail usage within the next few years.
85%
More than 85% of all businesses and organizations now make use of IM.
20-25% report improvement in productivity.
TWO CORPORATE VENDORS
• Integration across MS IT Suite (coexist plan)
• Can deploy for IM/Presence and ad-hoc web-conferencing then expand later to VOIP Network
• IM/Presence
• Can use strictly as a soft phone, or strictly as IM/P, or both
• Cloud and On-Premise solutions offered
• Can provide IM/P to inter/intra domain federations with other enterprise systems
• Lync Skype federation allows users to IM/P & talk between the two • Integration into other Collaboration products such as WebEx,
Calendar, and MS Office
• Can easily escalate communications from IM/P to voice to video to WebEx meeting
GENERAL IM CONVERSATION REGULATIONS
30% of companies using IM have away of tracking and archiving these
communications
40% of companies polled do not havea system of keeping the history or a
searchable archive in-house
IM is often overlooked as a crucialpiece of information management
30% 40% !
Simply blocking all IM or P2P services would place these businesses at a competitive disadvantage in the marketplace. The preferred solution is to allow properly controlled use of these services.
Availability Con�dentiality Integrity
Excess litigation costs Loss of customercon�dence
Loss of intellectualproperty
The top three information governance failure risks
Maintain, protect, and assess compliance issues
Establish andimplement controls
Identify and remediatevulnerabilities and deviations
Provide reportingthat can prove your
organization's compliance
At the heart of most regulations is the intention of protecting theinformation that impacts a corporation's stakeholders
These laws can be distilled down to their essential goals
INDUSTRY SPECIFIC REGULATIONS
Regulated industries are required to preserve and keep accessible and expanding volume of records across endless systems used for internal communications and customers.
Financial Services - FINRARequires that all instant messages
be retained and retrievable
Government – Freedom of Information Acts
Requires that agencies produce copies of instant messages upon
requests
General BusinessRequires you to produce records within a reasonable time frame upon receipt of a subpoena or
other valid request
WHAT DOES IT TRULY TAKE TO BE COMPLIANT MPS WITH THESE MANDATES?
DOES SIMPLY STORING RECORDS IN A DATABASE MAKE YOU COMPLIANT? NO!
Compliant!Audit Trail
Prove your records arecomplete and unmodi�ed
Digital SignaturesVerify the integrity
of your records
Compatibility with third-partycompliance products
Integrate your IM compliance solution to one platform for
UC compliance
Access/SecurityManage identities and
authenticate users
Delegation of DutiesAssign administrative and
end-user rights/roles to your records
Legal Hold/Litigation HoldSave your records inde�nitely,
overriding other controls
Compliance Warning MessageAlert users that their instant
messages will be stored; triggeralerts/controls when security
or compliance is breached
!
As you can see, compliance requires much more than just storage. It is critical that you research your options before settling on a free or low cost solution. The true cost of the wrong solution can be enormous.
F� m�e inf�mati�about ISI’s IM Compliance:
WWW.ISI-INFO.COM
© Copyright 2015 ISI Telemanagement Solutions, Inc. 1051 Perimeter Dr, Ste 200 Schaumburg, IL 60173
