As new legislation unfolds, IT compliance officers often encounter widespread misunderstandings about what exactly is required for a company to remain in compliance. The stakes are big: Failing to meet one's compliance burden could lead to legal ramifications,
Requires Free Membership to View
financial penalties and the loss of reputation in the eyes of customers and
investors. Thus, organizations charged with managing an ever-increasing number of information
assets are developing and deploying IT
and corporate compliance plans to ensure continued adherence to regulatory guidelines and
specifications.
SearchCompliance.com has scoured the Web for free IT and corporate compliance plan templates and downloads for organizations looking to shore up their compliance strategies. While not all specifically aimed at the IT organization, they provide sound guidelines for building a targeted corporate compliance plan, as well as ensuring regulatory compliance at all levels of the enterprise.
SOURCE: COBIT Support
Resources
OFFERING: This corporate compliance
plan template provides a framework to assist you in setting targets that represent realistic
and affordable levels of compliance within an acceptable timeframe.
SOURCE: Uniform Business Office (UBO)
OFFERING: UBO offers a compliance
plan template that outlines the benefits of and best practices for periodic assessments of an
organizational compliance program.
SOURCE: GenOn Energy Inc.
OFFERING: This ethics
and compliance plan from GenOn is a good example of how to explain compliance programs to
employees. It includes a rundown of the organization's risk officers, instructions on detecting and
preventing criminal and unethical behavior, and other compliance protocols.
SOURCE: 2010 UBO/UBU Conference
OFFERING: This IT
compliance plan presentation on Docstoc.com discusses electronic medical records and provides a
helpful overview of the elements in any compliance review, including the importance of providing
training on ongoing revisions and a reminder that a compliance plan is a "living, breathing
document."
SOURCE: The Institute of Internal Auditors
OFFERING: This advice piece by risk compliance advisor Michael Rasmussen introduces a
seven-step IT
compliance program for your organization. Follow these steps to better document internal
policies and controls, appropriate management oversight and compliance training programs.
Let us know which IT compliance plan templates work for you; email editor@searchcompliance.com.com.
This was first published in September 2012
Join the conversationComment
Share
Comments
Results
Contribute to the conversation