SOX, BASEl II, PCI-DSS, COBIT… a handy reference
October 4, 2011 Leave a comment
In IT there are certainly enough terms and terminology to confuse even the most studious and astute of us. Add into the mix the standards, acts, laws et al that need to be considered in relation to security testing and the mix certainly thickens.
To help out here’s a quick listing of those that we often come up, with some handy links.
Remember, many of these are not going to apply to your organisation, either because they are US standards or for a different industry sector for example. However, conversely you may need to consider several of them. For example if you are in banking and finance and you hold credit card data you may need to look at SOX, PCI-DSS and GLBA.
We need to know what these acts, standards and benchmarks require in order for an organisation to declare itself compliant to them. In addition you’ll want to factor into your security and compliance testing guidelines from vendors and your own internal standards.
The Test Hats Security Team are experienced in guiding clients through the compliance and auditing process. We have helped build or refine a number of Information Security Management Systems and Security Auditing programmes. Why not get in touch today to see how we can help you.
Security Related Acts, Standards and links to information
Read more on the Test Hats website…