| |
: : C O M P L I A N C E
If your systems contain private customer information, SSN’s,
are a publicly traded company, Driving License numbers, account
information, phone numbers, if you move money around electronically, or
you do any credit card transactions, then you have to comply with one
or several of the laws below.
Compliance regulations come from companies not caring how they move
data around, or not guarding it properly, thusly risking potential loss
of those names and details in that database.
|
|
|
SOX (Sarbanes-Oxley)
Publicly Traded Companies
GLBA (Gramm-Leach
Bliley Act)
Financial institutions, and can be tricky to pass.
CISP (Cardholder
Information Security Program)
For those of you who do credit card transactions.
SB1386
(California, about protecting personal information collected by
institutions)
For anyone who has customer information in a database.
|
Some regulations are easier than others, one thing for sure
is they are not going to get easier! For example from a Network
Security point of view SOX is actually quite easy to pass if you are a
small public company. The paragraph that gets you is Para 404, vague
and open to interpretation, so there is no real way to be 100% sure, we
need to be ready for anything an Auditor may throw our way.
|
|
| |
OMG, OMG the
auditors are asking difficult questions!
|
How
can Holland IT help?
We do a great deal to help you through the process, we have done it
many times. An initial audit will be necessary in order to figure out
what we need to get you through. We then spec. out what changes need to
be made in plain English.
Our part after that is up to you, we can
manage the project for you, do the work, and get everything working to
your satisfaction. Or we can work with your IT guys. You define the
scope.
We will also help you out with the management side of
Compliance, paperwork, procedures and best practice.
|
|
|
Let us help you
310.526.7989
|
|
|
|
|
