KUKU

KU ScholarWorks

  • myKU
  • Email
  • Enroll & Pay
  • KU Directory
    • Login
    View Item 
    •   KU ScholarWorks
    • Engineering Management
    • Engineering Management Field Projects
    • View Item
    •   KU ScholarWorks
    • Engineering Management
    • Engineering Management Field Projects
    • View Item
    JavaScript is disabled for your browser. Some features of this site may not work without it.

    Integrated Compliance Framework for Data Processing Applications

    Thumbnail
    View/Open
    Vil, Jean EMGT Field Project.pdf (540.4Kb)
    Issue Date
    2009-12-18
    Author
    Vil, Jéan
    Type
    Project
    Metadata
    Show full item record
    Abstract
    The consumerization and decentralization of information in the last fifteen to twenty years have introduced new challenges that data processing companies must cope with in an effort to survive. To remain compliant in this ever changing business environment, companies‘ internal information technology controls around policies, processes, and systems must be mapped across regulations, standards, industry mandates, and best practices. Publicly traded businesses have struggled for years to keep-up with the virtual alphabet soup of compliance requirements resulting from new regulations and/or industry mandates. They have, in many cases, built costly and ineffective models to remain in compliance each time a new regulation, a new industry mandate, or a new vulnerability surfaces. The "Integrated Compliance Framework for Data Processing Applications" makes this whole complex compliance process much easier by focusing on the commonalities in the regulations, standards, and guidelines. It harmonizes controls across the information technology industry to significantly reduce the cost associated with meeting compliance and security requirements effectively and efficiently. It aligns key technical controls with specific requirements that most companies must comply with. Companies facing multiple regulations such as the Sarbanes Oxley Act of 2002, privacy requirements based on the Health Insurance Portability and Accountability Act, Payment Card Industry Data Security Standards mandates, Customer Proprietary Network Information regulation, Personal Identifiable Information regulation, etc. can immediately streamline their compliance measurement processes on a single platform. This framework facilitates the institutionalization of compliance in the core components of the business model. It allows organizations to focus on a strategic plan to comply with multiple regulatory bodies using the same team, tools, and funding. To this end, the framework assists with: mapping the overlap between multiple regulations and mandates, creating a critical control list for each impact zone, and clarifying any conflicts created by overlapping regulation and mandates. A robust, systemic, integrated, and well architected compliance framework can help companies comply with complex regulation, as well as spur productivity, enhance customer service, and boost return on technology investment.
    URI
    http://hdl.handle.net/1808/5926
    Collections
    • Engineering Management Field Projects [238]

    Items in KU ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.


    We want to hear from you! Please share your stories about how Open Access to this item benefits YOU.


    Contact KU ScholarWorks
    785-864-8983
    KU Libraries
    1425 Jayhawk Blvd
    Lawrence, KS 66045
    785-864-8983

    KU Libraries
    1425 Jayhawk Blvd
    Lawrence, KS 66045
    Image Credits
     

     

    Browse

    All of KU ScholarWorksCommunities & CollectionsThis Collection

    My Account

    Login

    Statistics

    View Usage Statistics

    Contact KU ScholarWorks
    785-864-8983
    KU Libraries
    1425 Jayhawk Blvd
    Lawrence, KS 66045
    785-864-8983

    KU Libraries
    1425 Jayhawk Blvd
    Lawrence, KS 66045
    Image Credits
     

     

    The University of Kansas
      Contact KU ScholarWorks
    Lawrence, KS | Maps
     
    • Academics
    • Admission
    • Alumni
    • Athletics
    • Campuses
    • Giving
    • Jobs

    The University of Kansas prohibits discrimination on the basis of race, color, ethnicity, religion, sex, national origin, age, ancestry, disability, status as a veteran, sexual orientation, marital status, parental status, gender identity, gender expression and genetic information in the University’s programs and activities. The following person has been designated to handle inquiries regarding the non-discrimination policies: Director of the Office of Institutional Opportunity and Access, IOA@ku.edu, 1246 W. Campus Road, Room 153A, Lawrence, KS, 66045, (785)864-6414, 711 TTY.

     Contact KU
    Lawrence, KS | Maps