Home
Topics
Assessing your regulatory compliance needs
Vulnerability assessment for compliance
internal control

Definition

internal control

An internal control is a business practice, policy or procedure that is established within an organization to create value or minimize risk.

A subset of internal controls, IT controls, are designed to ensure that the information technology (IT) within an organization operates as intended, that data is reliable, and that the organization is in compliance with all applicable laws and regulations.

See also: control framework, enterprise risk management (ERM), governance, risk and compliance (GRC), GRC software, best practices

This was last updated in March 2011

Posted by: Margaret Rouse

Email Alerts

Register now to receive SearchCompliance.com-related news, tips and more, delivered to your inbox.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

More News and Tutorials

Vulnerability assessment vs. penetration test: Which is right for you?

Learn the differences between a vulnerability assessment and a penetration test and how to determine which is better for your IT compliance processes.
The business case for financial compliance at your organization

Organizations should view financial compliance as a byproduct of business strategy best practices rather than just a way to avoid penalties and fines.
Governing the complications of social media security and compliance

Technology law expert Jeffrey Ritter discusses the obstacles to governing social media security in 21st century business and what companies can do to protect their information.

Articles
Resources from around the Web
- Wikipedia entry for IT controls
- Understanding internal controls

Do you have something to add to this definition? Let us know.

Send your comments to techterms@whatis.com

Research More Tech Terms

Search thousands of tech definitions
Browse tech definitions
Browse Alphabetically:
- A
- B
- C
- D
- E
- F
- G
- H
- I
- J
- K
- L
- M
- N
- O
- P
- Q
- R
- S
- T
- U
- V
- W
- X
- Y
- Z
- #

Powered by WhatIs.com

File Extensions and File Formats

File Extension and File Formats List:

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z
#

Powered by WhatIs.com

More from Related TechTarget Sites

CIO
CIO-Midmarket
Health IT
Cloud computing
Data Center
Data Management
Security

CIO
- #MITCIO tweets and tips on architecting the enterprise of the future
  
  Six takeaways from the MIT Sloan CIO Symposium on architecting the enterprise for cloud, big data, mobile, you-name-it.
- IT strategies are no way to do business
  
  Fresh off the MIT Sloan CIO Symposium, Searchlight looks at IT strategies, having a blast while building a data center, doing safe search and more.
- City CIO propels open government initiative with technology innovation
  
  IT Leadership Awards finalist, CIO Jonathan Reichental, launched a successful open government initiative by using technology innovation.
searchCIO-Midmarket
- McGraw-Hill Construction CIO sees future in the 'Internet of Things'
  
  McGraw-Hill Construction CIO and IT Leadership Awards finalist Isaac Sacolick shares his views on leadership qualities and the 'Internet of Things.'
- Small-business cybersecurity: Mitigating employee and customer threats
  
  Small-business cybersecurity programs often hinge on how organizations prepare for -- and respond to -- employee and customer threats.
- CIO pushes for public fiber optic network, saving taxpayers millions
  
  Doing the math on own vs. rent, a CIO galvanizes the community to build its own fiber optic network, saving taxpayers $10 million over 10 years.
Health IT
- CIO discusses making analytics systems more meaningful
  
  With payment reform just around the corner, many providers are looking to implement analytics systems.
- Supply chain automation supports cost reduction, quality improvement
  
  Supply chain automation can help providers make it through payment reform, as well as improve care quality and efficiency.
- Challenges, opportunities of HIE development: Insights from MAeHC
  
  The Massachusetts eHealth Collaborative suffered a data breach in 2010. Read this Q&A to find out how that incident changed their encryption policy.
Cloud computing
- Interest in private clouds grows as market matures
  
  Growing interest in private clouds reflects an improved understanding of cloud computing among IT pros, experts say.
- Building a cloud ecosystem with open source software
  
  The open source community fosters innovation in the name of cloud. OW2's Cédric Thomas talks of 'coopitition' and the open source cloud revolution.
- Sequestration stymies federal government cloud ambitions
  
  The federal government is under mandates to consolidate data centers and deliver IT as a Service, but sequestration makes this easier said than done.
Data Center
- Data center modernization starts with cloud, SDN and virtualization
  
  Some of the technologies driving data center modernization include cloud computing, flash storage, virtualization and software-defined networking.
- Data center technologies evolve to meet tomorrow's computing demands
  
  VMware's upcoming public cloud and AMD's 64-bit ARM servers are technologies for the data center that exemplify the changes in the IT industry.
- New data center cooling strategies to improve efficiency, lower costs
  
  Stagnant strategies for data center cooling will keep energy bills climbing ever higher, but a more modern approach can bring them back down to earth.
Data Management
- New BI stack tackles data load at Boston Children's Hospital
  
  Boston Children's Hospital upgraded its business intelligence architecture to boost enterprise reporting, a move that also required retraining users.
- Expanded Hadoop use cases will drive need for new enterprise features
  
  With user interest rising, Hadoop vendors are trying to pave a path to higher adoption with add-ons that target issues holding the technology back.
- Jim Goodnight on SAS in-memory analytics and the data scientist
  
  A podcast Q&A with SAS execs Jim Goodnight and Jim Davis looks at big data enablers, including in-memory analytics, and the role of data scientists.
Security
- Case study: CDI launches aviation company DLP program on short runway
  
  Technology services company CDI-Aerospace used a Verdasys DLP solution to manage third-party risk for a major aviation client.
- IT certification guide: Vendor-specific information security certifications
  
  Experts Ed Tittel and Mary Lemons provide a 2013 overview of vendor-specific information security certifications available.
- Introduction: Vendor-neutral security certifications for your career path
  
  Ed Tittel and Mary Lemons offer the definitive primer for vendor-neutral security certifications in 2013.

All Rights Reserved,Copyright 2009 - 2013, TechTarget