Information Security and Multi-Compliance: Avoiding Audit Fatigue with a Single IT Compliance Strategy
sponsored by Tripwire, Inc.

The compliance approach to meeting information security goals tends to follow the cycle of crisis-driven audit preparation, audit, audit findings, remediation, and retesting. This may also be followed by a highly political search of who is to blame for the unsuccessful audit. Often, the person held personally responsible will be the CIO, who may in turn blame the CISO or compliance officer. In either case, IT management has tremendous incentive to figure out a new, more effective approach to meeting these information security and compliance goals.

This Prescriptive Guide provides nine steps that information security managers can use to break the compli­ance blame cycle and build an information security program that more effectively mitigates security risk. By successfully executing these steps, the information security manager will no longer continually react to and manage the audit preparation crisis du jour. Instead, the information security manager will institute and rely upon regular, defined activities to complete the heavy lifting of preparing for a successful audit long before the audit occurs.

Available Resources from Tripwire, Inc.
See what other users are reading via our Daily Top 50 Report

About TechTarget:

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines

All Rights Reserved, Copyright 2000 - 2014, TechTarget | Read our Privacy Statement