The title is bit confusing, isn’t it? But if you’ve worked as a Compliance Auditor then I’m sure that you feel my pain. If its first time when your organization is facing a compliance audit the pain is doubled. You’ve to perform Audit planning & preparation, Establish audit objectives, Perform the internal reviews, rectify mistakes and take necessary actions and much more..
In this series we will talk about different types of compliance like PCI-DSS, HIPPA, ISO 27001, SSAE 18, SAS 70, Safe Harbor and many more along with the details one should be aware of, processes to build up-implement-take follow up of, how to review them and much more.
If you are a Security Professional responsible for these implementations then the quest ends here cause I’d be sharing up ideas on how one should be performing security assessments for these audits and what areas are of higher significance. If you are willing to learn all compliance procedures then this is the Umbrella Corporation for you 😉
Stay Tuned! Viva la Security!!