Chapter 6
Reducing Risk and Exceeding Compliance
All I want is compliance with my wishes, after reasonable discussion.
—Winston Churchill
This chapter focuses on various forms of compliance. Compliance by definition is to meet governing regulatory or contractual requirements. Requirements can come from an organization’s leadership, such as a corporate-mandated policy, which would be considered a policy based on corporate compliance. Another possible requirement is meeting a legal obligation, which would be government-based regulatory or statutory compliance. Lastly, a compliance requirement can be industry compliance, meaning leadership sets the goal to meet a general recommendation. Not being compliant with a government-required policy will ...
Get The Modern Security Operations Center: The People, Process, and Technology for Operating SOC Services now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.