Complying with Mandates and Managing Risk
In This Chapter
Recognizing the importance of compliance
Reviewing the risk management process
Developing risk management strategies
Inexpensive, powerful computing systems have transformed business operations and levied expanding interconnectivity provided by the Internet to extend services to customers and consumers around the world. As connectivity expands, businesses face ever-expanding regulations and controls over data expression, service availability, and service use. In many industries, specific legislation identifies minimum levels of compliance with risk management and security guidelines; other industries impose specific requirements on their own customers as a mandate for service availability.
You need to be familiar with any regulations, legal mandates, and industry directives that may affect enterprise planning and compliance reporting for your organization. Also, you must create a risk management strategy, both to meet regulatory mandates and to ensure the availability and integrity of data and services necessary for everyday operations.
This chapter presents some issues you may encounter if your organization is subject to some of the more common legal mandates, as well as an introduction to the basics of risk management as it applies to IT Architecture.
Keeping Your Company Compliant
Many laws and industry requirements require detailed documentation and certification of compliance in order to avoid fines, fees, ...