“We need to do this! Else we are not compliant!”

I have heard this numerous times while working at a SOx and FDA compliant customer. Of course, we need to ensure we are and stay compliant. But who knows exactly why and how we are compliant? There are so many standards, frameworks and regulations used within companies that we loose track of them. Not to mention all policies we have defined for these authoritative sources. This is where the IT Governance Risk and Compliance module steps in.
Continue reading…»