The first order of business when developing your Operational Policy model and book of policies is to build your Security Policy Charter and identify what compliance regulations your business may be held to account. For instance as a healthcare provider, vendor or contractor you will likely be subject to the compliance regulations outlined in HIPPA. If you are accepting credit cards or collecting financial data and information, you may be subject to PCI/DSS compliance. Your charter should lay these items out and will serve to make everyone aware of their implication to the business. Below you will find an example of a Security Charter and an output that outlines a few of the most critical compliance regulations.
hic_security_program_charter_final.pdf | |
File Size: | 195 kb |
File Type: |
list_of_applicable_compliance_and_regulation_related_items_for_hic_inc.pdf | |
File Size: | 133 kb |
File Type: |