Top Reasons Compliance Programs Fail and How to Minimize Exposure

Email     |     Share  
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10
Next Top Reasons Compliance Programs Fail and How to Minimize Exposure-2 Next

Compliance Gaps

Compliance Challenge #1: Compliance Gaps

In the alphabet soup that is today's regulatory compliance landscape, there are several prominent standards that are so broadly implemented that organizations often mistakenly believe that adhering to one, and one alone, is sufficient for building an effective, legally defensible compliance program. But did you know that though ISO 27002 has 238 direct controls, only 16 percent of them overlap with the Sarbanes-Oxley Act (SOX), which mandates 174 direct controls? And when these two standards are compared with PCI DSS 3.0, which has 293 direct controls, only nine common controls span across all three.

To reduce audit requirements and curb compliance chaos, organizations must find ways to more efficiently analyze these gaps and overlaps.

Companies are struggling to understand and implement the right policies and controls to meet ever-evolving compliance mandates. Yet strict adherence to individual compliance standards means they've likely implemented controls they do not need, while inadvertently leaving out important controls necessary for an effective program. This cookie-cutter approach can actually leave organizations more exposed than ever before to potential security risks and controls failures.

In this slideshow, Unified Compliance CEO, Craig Isaacs, explores current compliance gaps, major compliance challenges and practical tips to create more effective compliance programs.

 

Related Topics : A Big Market for Big Data Jobs, Midmarket CIO, IT Management Automation, SharePoint, Technology Markets

 
More Slideshows

gig economy How the Gig Economy Is Changing the Tech Industry

The gig economy is clearly disrupting the tech industry, both in positive and negative ways. ...  More >>

Fake news How Can We Fix the Fake News Problem?

Is fake news a security issue? Some say yes, as it can be used as a social engineering tool to spread disinformation and conceivably to get unsuspecting users to click on malicious links. ...  More >>

IT security skills 7 Top Skills for Security Pros

Executives at several top tech firms outline the skills they need now and in the near future, including IaaS and IoT security expertise. Other skills listed may surprise you. ...  More >>

Subscribe to our Newsletters

Sign up now and get the best business technology insights direct to your inbox.