Chapter 5. Starting an Enterprise Compliance Program

In this chapter, we will cover the following topics:

  • Using project management in your compliance approach
  • Understanding management support
  • Defining your communication approach
  • Planning the risk assessment approach
  • Planning documentation requirements
  • Defining your test approach


The belief that a company will never face a security or compliance incident is rather naive but still held by many business managers. They would rather maintain their reactive approach than invest time and money in a proactive, systematic approach. Should an issue arise or a business unit receive a high degree of public attention, the incident is addressed, and this process of doing so has come to be known as a

Get Microsoft System Center 2012 R2 Compliance Management Cookbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.