Case Study: Standards-based compliance: A how-to guide

By Dick Mackey 26 Oct 2005 | SearchSecurity.com

Digg This!     StumbleUpon     Del.icio.us

Regulations such as SOX 404, GLBA and HIPAA are notorious for telling you what you need to accomplish, but not how to accomplish it. This session dives into the pros and cons of using standards such as COBIT, COSO and ISO17799 as the vehicles to improve regulatory compliance. Each of these standards has a different purpose, some extremely broad, others more focused. In thinking about security, in particular, one needs to navigate through the various standards to understand which parts overlap and how to meet the security requirements specified in them without wasting time and money. This session shows you how. We detail how the standards relate to specific regulations, the motivation behind each security framework, and their strengths and weaknesses. We also discuss how awareness of these standards can help improve your overall security approach, as well as your risk management program.

You find out:

• Which standard is best aligned to which regulation
  
• How security standards in general help you improve your risk management processes
  
• The most useful parts of each standard
  
• If you can safely ignore any parts of each framework

Download this presentation

Tags: What's going on: Compliance today,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT What's going on: Compliance today Data management podcast briefing: Trends in data governance, with Gwen Thomas Effectively using vulnerability management data How compliance will affect your business White Paper: Taking the Pain out of IT Regulatory Compliance

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary