The article appeared in ISACA Washington DC Chapter’s Newsletter
ControlCase, a leading global provider of Compliance as a Service (CaaS), Certifications, and IT Governance, Risk and Compliance (GRC) software is pleased to announce that its new article on integrated compliance has been published in ISACA Washington DC Chapter’s Newsletter. Written by Zeal Somani – Manager at ControlCase, the article, entitled, “The Art of Integrated Compliance – How to Successfully Control Once and Comply Multiple Times” explores integrated compliance and draws on the company’s extensive experience working with organizations that require compliance to multiple regulations such as PCI DSS, ISO 27001, SOC 1/2/3, HIPAA and HITRUST.
“Integrated compliance frameworks offer a mechanism to implement a single enterprise-wide compliance framework wherein the goal is to ‘control once and comply multiple times,” said Somani. “While the concept seems simple and straightforward, organizations often struggle to implement it successfully. This new article instructs companies on how to avoid common pitfalls when adopting integrated compliance frameworks.”
The article explores four key points to consider when implementing an integrated compliance framework:
• Scope – Determining the appropriate scope for adopting an integrated compliance framework
• Risk Documentation – Developing a risk assessment which is a lynchpin to successful implementation
• Stakeholders – Identifying stakeholders and forming a steering committee to achieve intermediate and overall milestones and goals
• Approach – Selecting and implementing the right controls without overkilling the framework
Last year, ControlCase introduced “One Audit,” an integrated compliance and risk control solution. The solution is a blend of enterprise software solutions, hosted solutions, and managed services that streamline the creation, mapping and updating of internal and external controls, thus empowering IT, Security, and Compliance professionals to collect evidence once and map it across multiple regulations. The solution features a flexible platform for managing all aspects of IT-GRC in any size organization and reduces audit preparation time and compliance costs.
About ControlCase
ControlCase is a global provider of Compliance as a Service (CaaS), Enterprise Software and Services. Our offerings enable clients to effectively manage their IT Governance, Risk Management and Compliance Management (IT GRCM or GRC) efforts.
Headquartered in the United States, with locations in North America, Europe, Asia Pacific and the Middle East, ControlCase focuses on providing and developing services, software products, hardware appliances and managed solutions that focus on compliance regulations and standards; including PCI DSS, SOC1, SOC2, SSAE16, PIPEDA, ISO 27001/2, FERC/NERC, Sarbanes Oxley (SOX), GLBA, HIPAA/HITRUST, CoBIT, and BITS FISAP SIG/AUP.
For more information, please visit the company website at www.controlcase.com