Compliance Management
Compliance management focuses on governance, risk, and compliance (GRC) solutions that track not only your organization’s internal and external compliance obligations, but also the level of compliance that your suppliers have demonstrated with the information security requirements that you’ve shared with them.
Keywords
HIPAA; PCI; NERC/FERC; SOX; COPPA; FERPA; CFPB
The last group of security controls I want to cover fall under compliance management.
There are two key questions here:
What do I need to comply with?
What rules and regulations exist that apply to me?
HIPAA, PCI, NERC/FERC, SOX, COPPA, FERPA, CFPB ...
Get Infosec Management Fundamentals now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.