Training Courses

ITCOMP100: IT Solutions for Compliance Professionals: Managing the IT burden of Regulatory Compliance - How IT Systems Assist Management with Compliance Issues

CPE credits: 3.5

Description: Corporate governance issues have extended beyond national boarders to reach truly a global perspective. Establishing a proactive governance strategy focused on compliance, requires knowledge of how to maximize the role of organizational information technology (IT), to successfully ensure and to achieve global compliance. Taking the leg work out of proving compliance, and managing the technology burdens of SOX, HIPAA, GLB, Basel II and other emerging governance and compliance regulations, standards, guidelines and frameworks, this presentation identifies the key issues and presents best practices aimed at taking full advantage of IT resources in establishing strong internal controls and forging solid compliance strategies.

Audience: This presentation is intended for Chief Technology Officers, General Counsels, Chief Information Officers, Chief Security Officers, Controllers, internal and external audit professionals, Human Relations professionals - -persons charged with establishing or reviewing the implications of establishing strategies that embrace and coordinate the role of organizational IT in substantiating organizational compliance to today’s (and tomorrow’s) governance regulations, and professionals who generally want to learn more about controlling their organization’s compliance efforts through the proactive uses of IT.

Prerequisites: There is no prerequisite for this presentation.

Objectives: After completing this presentation, attendees will be able to:

· Gain a better perspective of the challenges to achieving organizational governance and compliance – internationally.

· Obtain a better understanding of the shifting governance roles and responsibilities of the organization’s IT function.

· Acquire a better understanding how IT systems assist management with compliance issues.

· Have a greater awareness of the varied laws, regulations, guidelines, frameworks and standards which address governance, and the role of IT in successfully implementing corporate governance.

· Be able to address and develop an enterprise-wide plan for the successful implementation of a governance strategy that involves the corporate IT function.

· Obtain a set of best practices for successfully implementing an IT-based governance and compliance program.

Presentation Outline:

Defining Compliance, Defining Governance

How Can IT Systems Assist Management with Compliance Issues?

Legislation, Frameworks, Guidelines, Standards – Contribution to IT Governance

· Public Company Accounting Oversight Board

· SOX

· ISO/IEC 17799:2005

· ISO 9000

· ISO 12207

· ISO 15288:2002

· ISO 13335 IT

· ISO 15489

· ISO/IEC 18043:2006

· ISO/IEC TR 18044:2004

· ISO/IEC 19770-1:2006

· ISO 20000 – ITIL

· ISO 21827

· ISO/IEC 27001:2005

· BS 25999-1

· Basel II

· HIPAA

· ISM3 Information Security Management Maturity Model

· Singapore Standards 507

· National Institute of Standard and Technology

· ACSI33

· PAS56

· COBIT

· PAS77

· ISF Standard of Good Practice for Information Security

· DCID 6/3

· Loi sur la sécuritié financière (LSF) [France]

· Data Protection Act of 1998

· Payment Card Industry (PCI) Security Requirements

· 8th Council Directive on Company Law (UK)

· GLB

The Cost of Compliance

Obstacles to Compliance

IT’s Contribution to Compliance

Best Practices

Best Practices for Security and SOX Compliance

Dr. Marcella's seminar will draw upon his 29 years of field experience in the areas of corporate, data, IT and physical security and his roll as a Board of Director member for the Saint Louis community InfraGard project, a Board of Governor member for the Saint Louis Institute of Internal Auditors and as a member of the Saint Louis Cyber-Terrorism Task Force.

Back to training courses.

IT Management Consulting, Training Services, and Audit & Security Reviews Since 1984