Governance and compliance Definitions

  • A

    audit program (audit plan)

    An audit program, also called an audit plan, is an action plan that documents what procedures an auditor will follow to validate that an organization is in conformance with compliance regulations.

  • B

    Basel Committee on Banking Supervision (BCBS)

    The Basel Committee on Banking Supervision (BCBS) is a group of international banking authorities who work to strengthen the regulation, supervision and practices of banks and improve financial stability worldwide.

  • C

    Certified Information Systems Risk and Compliance Professional (CISRCP)

    A Certified Information Systems Risk and Compliance Professional (CISRCP) is a person in the information technology (IT) field that has passed an examination on risk and compliance topics developed by the International Association of Risk and Compliance Professionals (IARCP).

  • COBIT 5 (Control Objectives for Information and Related Technology 5)

    COBIT 5 is the fifth iteration of a popular framework that's used for managing and governing information technology (IT).

  • compliance burden

    Compliance burden, also called regulatory burden, is the administrative cost of a regulation in terms of dollars, time and complexity.

  • compliance framework

    A compliance framework is a structured set of guidelines that details an organization's processes for maintaining accordance with established regulations, specifications or legislation.

  • conduct risk

    Conduct risk is the prospect of financial loss to an organization that is caused by the actions of an organization's administrators and employees.

  • control framework

    A control framework is a data structure that organizes and categorizes an organization’s internal controls, which are practices and procedures established to create business value and minimize risk.

  • corporate social responsibility (CSR)

    Corporate social responsibility is an umbrella term used to describe voluntary corporate initiatives concerned with community development, the environment and human rights. 

  • D

    data governance policy

    A data governance policy is an organization’s set of information management processes that are designed to assist business administration and protect company assets.

  • G

    Generally Accepted Recordkeeping Principles (the Principles)

    Generally Accepted Recordkeeping Principles is a framework for managing records in a way that supports an organization's immediate and future regulatory, legal, risk mitigation, environmental and operational requirements.

  • I

    information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and metrics that treat information as a valuable business asset.

  • IT controls

    An IT control is a procedure or policy that provides a reasonable assurance that the information technology (IT) used by an organization operates as intended, that data is reliable and that the organization is in compliance with applicable laws and regulations. Continued...

  • IT Governance Institute (ITGI)

    The IT Governance Institute (ITGI) is an arm of ISACA that provides research, publications and resources on IT governance and related topics.

  • M

    mobile governance

    Mobile governance refers to the processes and policies used to manage mobile device access to an organization's network or its data.

-ADS BY GOOGLE

SearchCIO

SearchHealthIT

SearchCloudComputing

SearchDataCenter

SearchDataManagement

SearchSecurity

Close