Security Compliance Audit takes into account various security measures that are either point in time adherence or are to be maintained throughout the audit period.
In this post we will go through the major sections of Indian Information Technology Act. Although this is a very high level overview, it will still help you to understand what all are the offense and what punishment can a culprit be sentenced if found guilty.
Although it is very important to train employees on best security practices and procedures, many organizations turn a deaf ear towards it and once they get breached or their compliance is revoked, they understand necessity and significance of security awareness training.
In this series we will talk about different types of compliance like PCI-DSS, HIPPA, ISO 27001, SSAE 18, SAS 70, Safe Harbor and many more along with the details one should be aware of, processes to build up-implement-take follow up of, how to review them and much more.