Compliance Program Easy to Implement & Follow

10 Step program

---

CIOs and CSOs are now under a great deal of scrutiny not only from their executive management but also from a range of governmental and industry regulatory bodies. Janco has created a ten step program that helps them address compliance issues directly. The program, when used in concert with Janco's Compliance Management products gets them in front of the issue.

Order Industry Standard Compliance Kit

More small and mid-sized business are impacted by state mandated (i.e. California, Massachusetts, New York, and others) than federal and SEC mandates.

The ten step program Janco recommends is:

• Implement a Security Officer Position - That individual does not do all of the work, rather they have responsibility for coordinating all compliance based issues.
• Conduct a compliance risk assessment - The first step is to understand which compliance mandates the enterprise falls under and then conduct a audit to see how well the enterprise complies as it currently is structured.
• Document - All compliance mandates require that documentation be in place for policies and procedures. The three things that compliance bodies look for are:
  • Is a policies or procedure in place
  • Is the policy or procedure followed
  • Is the policy or procedure the right one.
• Know the operating environment - Once a user is authorized to access information how will they gain access and where are the potential failure points.
• Prepare for Incidents - Even if you have every policy or procedure in place there will be compliance violations that will occur. Have a processes in place that focus:
  • Prevention
  • Detection
  • Correction
• . Expect the worst to happen - Do not accept the answer "That never could occur". It will and you will have to respond to it quickly and effectively.
• Control media and electronic files - a violation can not occur with out data. That data can be in any form - paper or electronic.
• Train users - With all of the best policies and procedures in place without proper training a compliance program can not work.
• Log and audit - This not only includes data but individuals and processes used.
• Clean up old data and system - Often enterprises will only worry about new applications. That is not enough concern over legacy systems and data needs to be considered.

Compliance Management

Janco offers a full range of tools to help enterprises of all sizes to address these issues. The Compliance Management kit provides the infrastructure tools necessary address these mandated requirements.

The Compliance Management tool kit comes in three (3) versions: Silver, Gold, and Platinum. In addition we offer a white paper on Compliance Requirements.