Preparing for a compliance audit…and why companies aren’t … Part 2 Steps to Compliance

In my last article I discussed compliance in an ideal world, but then talked about the reality that companies face regarding compliance efforts in the real world.  If you are ready to move your organization’s compliance and security posture closer to the ideal world, here are seven steps every IT organization should take whether they […]

Preparing for a compliance audit…and why companies aren’t

  Ideal World In an ideal world, a robust Information Security Program is a prominent feature of any IT or service organization’s security, compliance and audit strategy.  An overseeing governance, risk and compliance committee, comprised of key stakeholders, would complete a risk assessment prior to a service being launched.  Including having process and system risks […]