ISACA Latin CACS – Corporate Guidelines for Social Media Efforts

Photos of Raul Colon Web Developer Puerto Rico

A few months ago I decided to sign up to talk at Latin CACS Conference being held in San Juan where I will be holding a session on Corporate Social Media Guidelines Corporate Guidelines for Social Media Efforts . 

Having worked in the IT Security & Governance field for many years I wanted to give my insight of the risks I see in companies regarding social media. Working along large corporations like Pepsi, Dover, Whirlpool, Hitachi Metals, Swiss Re, Federal Home Loan Banks and many others while at KPMG and previous employers I got a good understanding on the processes that went around IT Security and Governance in many corporations.

A Liaison with Social Media and IT Governance & Security

Being involved in blogging, twitter, and other channels gives me a good understanding on how Corporate Guidelines should be aligned for Social Media Efforts. Most of my ex-coworkers see Social Media networks or channels as a waste of time. A few of them are coming around the corner and realizing how important it is for them to get a good understanding of how we are communicating via these channels.

Many others are so focused on other things that they are not adequately changing their mind-set to understand that the world has changed and any company ignoring social media channels can become a victim with huge consequences.

Taking Social Media Into Consideration

My biggest hurdle with this audience is helping them understand that healthy corporate governance needs to make a space for social media in their environments.

They need to make sure adequate processes and guidelines are in place to ensure companies are in touch with what is happening in the Social Media Channels.

What examples can you think of that these large organizations need to work on?


  1. Anonymous on August 24, 2011 at 5:09 pm

    Raul:  Check out
    I was on a webinar recently where someone said “hey, if the U.S. Army can adopt social media, anyone can”.
    I believe they let anyone post updates and write articles and submit video even as long as they are a registered part of the community.  Pretty cool stuff if you google around for more info.

    • Raul Colon on August 24, 2011 at 5:19 pm


      Yes there is pretty good stuff on the subject. I think if we look at @charleneli:twitter ‘s book Open Leadership and @thebrandbuilder:twitter ‘s ROI book we can learn a lot. 

      The problem is that not many in the IT security or governance make it a priority. 

      I guess the military does have its restrictions. As an ex-service member I would not call the U.S. Army an open community. I am more than sure they are looking at it from a marketing and recruiting perspective.