You’ve probably spent a lot of time and money to ensure compliance with government regulations and industry best practices. Whether you deal with SOX, HIPAA, PCI, or another set of controls for your industry, you’ve probably made a substantial investment to ensure you’re fully compliant.
Information systems play a critical role in many of these frameworks. Data security is intimately linked to privacy rules. Retention requirements are easily met through backups. IT staff and management are well versed in the rulebook, but what about your end users? While it is often easy to understand the technical controls that need to be in place, your internal policies and procedures are often equally as important. ...Read More