Under Control: Governance Across the Enterprise

7.4. IT Compliance Controls

An IT compliance control is a procedure, a technology, or both, that is intended to help ensure the correct operation of a set of IT processes related to compliance. Although this chapter doesn't provide details about specific controls you should use to achieve successful IT compliance, you may want to consider some of the areas set forth below:

Identity and access management: Management of all user identities and accounts, and control of their access to critical IT resources.
Vulnerability management: Controls to ensure that the current versions of software packages are being used on relevant systems, so that system and network vulnerabilities are both known and minimized.
Threat management: Controls used to detect, ...

Get Under Control: Governance Across the Enterprise now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Under Control: Governance Across the Enterprise by Jacob Lamm

7.4. IT Compliance Controls

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly