Risk Management Solutions for Sarbanes-Oxley Section 404 IT Compliance
|
Risk Management Solutions for Sarbanes-Oxley Section 404 IT Compliance
|
ADVANCES IN CANCER RESEARCH is a biannual publication that includes timely reviews on the most cutting-edge issues in cancer research. Volume 66 contains encompassing overviews of p53 and its role in both breast cancer and in the cell cycle. Approximately 50% of all human tumors involve mutations of the p53 gene, suggesting that proper understanding of its properties and mechanisms could offer real hope for finding successful clinical therapy. Other themes presented in Volume 66 include cyclins and cyclin-dependent kinases in the cell cycle. Approximately 50% of all human tumors involve mutations of the p53 gene, suggesting that proper understanding of its properties and mechanisms could offer real hope for finding sucessful clinical therapy. Other themes presented in Volume 66 include cyclins and cyclin-dependant kinases in the cell cycle: the molecular genetics of 11q23 chromosome translocations: the possible link between the aberrant expression of Scatter Factor and c-Met with AIDS Associated kaposi's Sarcoma, the use of Radiation Leukemia Virus to induce leukemogenesis, and the Adenovirus system as a model for the insertion of foreign DNA into mammalian genomes. Also of note in the "Foundations of cancer Research" section are articles by two prominent cancer researchers recollecting the ideas and paths taken in their lifelong work. Paradigms proposed in these reviews mark thoughtful progress toward preventative therapy in oncogenesis and gene therapy of cancer. They also cast light on the fact that the ideas presented in these chapters are only the tip of the iceburg in this complex and ever evolving field, and suggest many more to come in future volumes.
Key Features
* Contains two Foundations in Cancer Research articles with personal accounts by prominent biologists on their careers in cancer research
* Presents overviews of the role of p53 in breast cancer and cell cycle regulation
* Describes the regulatory role of cyclins and cyclin dependent kinases in DNA replication and cell division
* Explains the puzzling link between HIV infection and Kaposis Sarcoma
* Includes models for retrovirus-induced tumorigenesis and foreign DNA insertion into mammalian genomes
23/06/2006
This book is unique, as far as I know, as a very timely analysis on technical issues and their impact on risk management.
Chapter 1 looks at three power laws for scaling networks - Sarnoff, Metcalfe and Reed. Valuing assets is a precursor to any risk management activity. Chapter 2 looks at the differences between traditional risk and Internet-style risks. There is an important distinction in perils and anomalies. Perils are defined as bugs and vulnerabilities. Anomalies are defined as the problems that arise once a vulnerability is exercised. There is also a section on monoculture which compares computing monoculture to bollweevils and other physical world monoculture risks.
Chapter 3 describes high level strategies like redundancy and backups for dealing with risks. These are high level not detailed operational planning, but they are useful for directors to plan what actions manage what risks. Federation is mentioned as having a positive impact on higher assurance integration between service providers and consumers. Another theme is the positive and negative aspects of decentralization, Quarterman concludes it is largely a positive development, and a decade and half into the web, that looks like a safe assumption.
For a book with Sarbanes in its title, there is not a ton of information on compliance. This is not a big a problem for me, since I, like this book, view compliance as a subset of risk management. Chapters 4-8 look at the implications of risk in various business sizes and verticals.
Chapter 6 examines some physical world controls that work fine in the real world but are insufficient in the digital world such as 4 digit PINs for ATMs. This chapter also covers various types of insurance schemes such as Cat Bonds.
Chapter 7 compares Frederick Winslow Taylor (command and control) to John Boyd (smart nodes) and concludes - Taylor Wrong. Boyd Right. Speed and autonomy are more valuable in a networked world. It is often said the important stuff is not exciting, risk management may not be a thrill a minute for everyone, but this book shows why risk management is important to businesses.
Chapter 8 contains an history of technologies, but does not address SOA, Web Services, Web 2.0 et. al in the context of the 5th Wave. Chapter 9 deals with a recurring theme on differentiating between risk inside the perimeter and outside the perimeter and the disparate strategies available. Chapter 10 describes some key differences between SOX (looking for black list items) and Basel II (culture change). Boyd's OODA loop is revisited in the context of self-healing networks. There is a section on the modern military's reliance on the web, which reminded me of a story Detect-Respond strategy.
Chapter 11 discerns between first party loss and third party loss. Chapter 12 contains a set of actionable items for companies wanting to improve their risk management.
Overall, a useful window into the current risks and risk management opportunities in the early 21st century.
Your Name:
Your Review: Note: HTML is not translated!
Rating: Bad Good
Enter the code in the box below:
 Managing gigabytes: compressing and indexing documents and images Alistair Moffat, Ian H. Witten, Timothy C. Bell |
|||
 The design and implementation of the 4. 4BSD operating system John S. Quarterman, Keith Bostic, Marshall Kirk Mckusick, Michael J. Karels |
 The Design and Implementation of the 4.4 BSD Operating System John S. Quarterman, Keith Bostic, Marshall Kirk Mckusick, Michael J. Karels |
|
|
