ME03 Ensure compliance with external requirements

focuses on	identifying all applicable laws, regulations and contracts and the corresponding level of IT compliance optimising IT processes to reduce the risk of non-compliance
is controlled by	ME03.1 Identification of External Legal, Regulatory and Contractual Compliance Requirements Identify, on a continuous basis, local and international laws, regulations, and other external requirements that must be complied with for incorporation into the organisation´s IT policies, standards, procedures and methodologies. ME03.2 Optimisation of Response to External Requirements Review and adjust IT policies, standards, procedures and methodologies to ensure that legal, regulatory and contractual requirements are addressed and communicated. ME03.3 Evaluation of Compliance With External Requirements Confirm compliance of IT policies, standards, procedures and methodologies with legal and regulatory requirements. ME03.4 Positive Assurance of Compliance Obtain and report assurance of compliance and adherence to all internal policies derived from internal directives or external legal, regulatory or contractual requirements, confirming that any corrective actions to address any compliance gaps have been taken by the responsible process owner in ... ME03.5 Integrated Reporting Integrate IT reporting on legal, regulatory and contractual requirements with similar output from other business functions.
is part of	Monitor and Evaluate (ME) All IT processes need to be regularly assessed over time for their quality and compliance with control requirements. This domain addresses performance management, monitoring of internal control, regulatory compliance and governance.
can be mapped to	The 7-Step Improvement Process The improvement process spans not only the management organization but the entire service lifecycle. This is a cornerstone of CSI. [06.2] Service reporting Objective: To produce agreed, timely, reliable, accurate reports for informed decision making and effective communication.
supports	Ensure IT compliance with laws, regulations and contracts.

Lernen Sie mehr über ME03 Ensure compliance with external requirements in einer unserer Schulungen:

CobiT Basic Practitioner Schulung

Haben Sie Fragen zu diesem Thema? Oder können wir sonst etwas für Sie tun? Unsere Experten stehen Ihnen gerne zur Verfügung:

schreiben Sie uns

Dies ist ein Teil des Body of Service Knowledge der Continental Software GmbH, zusammengetragen aus den Best Practices der ITIL und CobiT und PMBOK Frameworks, der ISO 20000 Norm, sowie aus eigener Erfahrung.

© Continental Software GmbH; ITIL® und IT Infrastructure Library® sind eingetragene Warenzeichen des Office of Government Commerce (OGC). COBIT® ist eingetragenes Warenzeichen der Information Systems Audit and Control Association (ISACA). ISO® ist eingetragenes Warenzeichen der International Organization for Standardization. PMI und PMBOK sind eingetragene Marken des Project Management Institute, Inc. Andere hier erwähnte Inhalte, Produkt- oder Firmennamen können die Warenzeichen ihrer jeweiligen Eigentümer sein.