Blog posts which just reference whitepapers etc. can annoy some of you so I try and limit these, but if you are one of the many IT managers or DBA’s worried about compliance then please read on.
The IT Compliance Guide is a comprehensive guide to all of those annoying acronyms that seem to get in the way of our work, like SOX, GLBA, HIPAA, EUDPD, PCI DSS, ISO 27002, COBIT 4.1, and AICPA GAPP. Some of these (SOX HIPAAS AICPA) will only apply to those of you who work for an American firm (like me then!), but the EU data protection Directive (EUDPD), and the ISO Code of practice for information security management (ISO27002), are closer to home so this is definitely worth looking at. It also includes an excel workbook to guide you through the processes.
The whole thing has been signed off by auditors Grant Thornton and is free to download.
PingBack from http://mstechnews.info/2008/10/governance-risk-management-compliance/
I liked your guide,maybe you can do a case study ona company who has implemented a IT security risk program and what were the challenges and any recommendations.
Yeah Jasmine, that would be a good case study.
Andrew , It seems the link for the guide is broken now . Can you provide a new one or send me a copy of the same
Sorry about this the guide has indeed moved sand you can download it from here: