Step 3: Establishing an IT Control Framework

About Compliance School In Compliance School, guest instructor Richard Mackey shows you exactly what you need to do to meet regulations' ongoing demands and arms you with actionable items to ensure your business remains continuously compliant. Best of all you can attend any of the following on-demand lessons when it's most convenient for you: Ensuring compliance across the extended enterprise Compliance improvement: Get better as you go forward   Gauging your SOX progress   SOX compliance basics: Taking Action    Understanding compliance-related technology

In the area of Planning and Organization:

• Determine the information architecture
• Define the IT organization and relationships
• Ensure compliance with external requirements
• Assess risks

• Acquire and maintain application software
• Acquire and maintain technology infrastructure
• Develop and maintain procedures
• Install and accredit systems
• Manage changes

• Ensure systems security
• Educate and train users
• Manage the configuration
• Manage problems and incidents
• Manage data
• Manage facilities
• Manage operations

• Monitor the processes
• Assess internal control adequacy
• Obtain independent assurance
• Provide for independent audit

Home: Introduction
Step 1: Understanding compliance -- Financial and technical standards
Step 2: Scope of compliance
Step 3: Establishing an IT Control Framework
Step 4: Detailed objectives and policies
Step 5: Measuring compliance
Step 6: Managing and tracking compliance
Step 7: The changing nature of compliance