Building A Sustainable IT Compliance Program

October 2nd, 2007

Marc Othersen

With contributors:

Jonathan Penn , Khalid Kark , Michael Rasmussen , Allison Viglianti

Summary

CIOs and CISOs struggle with IT audits. Unknown compliance requirements, an excessive number of controls, and inconsistent testing results are a few of the issues plaguing IT leaders today. To alleviate these issues, IT compliance programs must structurally address their ability to maintain an authoritative control framework, identify and resolve control deficiencies, measure and report control effectiveness, and provide advisory services for IT controls. Developing an IT compliance program based on these capabilities and integrating it within normal business and IT operations will provide a consistent approach to sustaining compliance.

Want to read the full report?

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.