Document Controls

  • View a Print Friendly version of this document

    Print

  • Toggle highlighting of search terms in this document

  • Text Size: 

    • A (normal)
    • A (larger)
    • A (largest)

For Security & Risk Professionals

Primary Analyst Photo Document Information Rate this Document

October 2, 2007

Building A Sustainable IT Compliance Program

by Marc Othersen

with Jonathan Penn, Khalid Kark, Michael Rasmussen, Allison Herald

Average:
(3 ratings)

This is an excerpt

Executive Summary

CIOs and CISOs struggle with IT audits. Unknown compliance requirements, an excessive number of controls, and inconsistent testing results are a few of the issues plaguing IT leaders today. To alleviate these issues, IT compliance programs must structurally address their ability to maintain an authoritative control framework, identify and resolve control deficiencies, measure and report control effectiveness, and provide advisory services for IT controls. Developing an IT compliance program based on these capabilities and integrating it within normal business and IT operations will provide a consistent approach to sustaining compliance.

TABLE OF CONTENTS

  • Common Compliance Issues Today
  • Designing The IT Compliance Program
  • Integrating The IT Compliance Program

RECOMMENDATIONS

  • Lay The Foundation For A Successful Implementation Across Business And IT

WHAT IT MEANS

  • IT Compliance Programs Will Become Freestanding Functions
  • Related Research Documents

This is an excerpt

Buy Risk-Free

Price: US $499

Our Service Guarantee: If you are not completely satisfied, return it for a full refund.

Already a Forrester Client?
Log in to read this document.

Add to cart

Save and Share

Document Tools

Spread the word:

RESEARCH CATEGORIES

Technology

Security & Risk, Governance, Risk, & Compliance, IT Management, IT Strategy, Planning, & Governance

Geography

Asia Pacific, Europe, North America