Compliance Models and Frameworks
Organizations can use a number of models or frameworks to help them meet electronic compliance expectations. The models can be modified, depending on the business requirements, type of industry, and the technology being implemented. Models and frameworks are intended as guidance; they do not specify detailed procedures. Interestingly, all frameworks seek to incorporate security as early as possible into system or service development. To do that, security gets discussed as early as initial requirements gathering. Frameworks also specify expectations regarding corporate culture, identifying who does what (roles and responsibilities) to make sure created electronic systems include security. Documentation is another ...
Get Secure Software Systems now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
