IT Governance, Risk, and Compliance

Feb 12 2009   10:22PM GMT

Legal Compliance Alignment – Part I



Posted by: Robert Davis
Tags:
FCPA
Foreign Corrupt Practices Act
GLBA
Gramm-Leach-Bliley Act
Health Insurance Portability and Accountability Act
HIPAA
IAP
Information Asset Protection
Information Security Governance
Information Security Management
ISG
ISM
Sarbanes Oxley Act
SOA
SOX

Institutionalized information security governance defines the information assets safeguarding perimeter inside which an entity should operate. Whereas, legal compliance management ensures structural boundary segments are sturdy and the entity consistently fulfills its mission within externally imposed demarcation lines. Generally, determining an entity’s legal mandates exceeds the security function’s ambit. Nonetheless, overseeing the design, implementation and monitoring of applicable legal requirements is a security function imperative. Aligning information security governance with legal compliance management allows an entity to enhance cultural ethics while concurrently reducing judicial risks.

 Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: