The IT Compliance and Governance Program Must Be Synchronized with the Overall Corporate Compliance Vision

摘要

Publicly-owned organizations are now switching some attention from dealing with Sarbanes-Oxley financial compliance issues to Information Technologies (IT) compliance issues. Organizations of all sizes rely heavily on IT infrastructure and systems to enable their key business processes to function. Consequently, they are aware that if their IT infrastructure is poorly controlled and thus not compliant to various laws requirements, the very foundation for establishing the financial integrity of the key business processes that IT supports is on shaky grounds. This COM-SAC issue focuses on the importance of conceiving and implementing IT compliance and governance programs that are synchronized with the overall picture for corporate and enterprise-wide compliance.