Managment Information Systems
: Management Information Systems
Topic: Developing IT Compliance Program
TABLE OF CONTENTS INTRODUCTION 3 Challenges IT Divisions Face in Achieving Regulatory Compliance 3 Vision, Architecture and Plan of Action for a Life Cycle Concept 3 Key business processes and IT compliance factors 3 Detailed Planning Phases ( Initiate, Plan, Develop and Implement) 3 Critical Success Factors in Project Procurement Management 3 CONCLUSION 3 References 4
Write about “What is IT regulatory compliance and governance” and describe about the types of regulatory compliance
HIPAA
(LIMMROTH, 2020)
(Bowers, 2017)
Challenges IT Divisions Face in Achieving Regulatory Compliance
XXX
HIPAA
(McLaughlin, 2017)
(Cason Schmit, 2019)
(Hezam Akram Abdulghani, 2019)
(S, 2018)
PCI
(Clapper & Richmond, 2016)
(Beissel, 2014)
(PCI Security Standards Council, 2019)
(Wilson, Roman, & Beierly, 2018)
Surbanes-oxley ?
(BOVA, MINUTTI-MEZA, RICHARDSON, & VYAS, 2014)
(Aquilio, 2016)
(HOSSAIN, MITRA, REZAEE, & SARATH, 2011)
Vision, Architecture and Plan of Action for a Life Cycle Concept
xxxxxx
Key business processes and IT compliance facto
Detailed Planning Phases (Initiate, Plan, Develop and Implement)
xxxxx
References Aquilio, M. (2016). SARBANES-OXLEY AND THE FISHING EXPEDITION. Journal of Business & Accounting, 25-36. Beissel, S. (2014). Supporting PCI DSS 3.0 Compliance With COBIT 5. COBIT Focus, 14-20. BOVA, F., MINUTTI-MEZA, M., RICHARDSON, G., & VYAS, D. (2014). The Sarbanes-Oxley Act and Exit Strategies of Private Firms. Contemporary Accounting Research, 818-850. Bowers, D. (2017). The Health Insurance Portability and Accountability Act: Is It Really All That Bad? Baylor University Medical Center Proceedings, 347–348. Cason Schmit, K. K. (2019). Cross Sector Data Sharing: Necessity, Challenge, and Hope. The Journal of Law, Medicine & Ethics, 83-86. Clapper, D., & Richmond, W. (2016). SMALL BUSINESS COMPLIANCE WITH PCI DSS. Journal of Management Information and Decision Sciences , 54-67. Hezam Akram Abdulghani, N. A. (2019). A Study on Security and Privacy Guidelines, Countermeasures, Threats: IoT Data at Rest Perspective. Symmetry, Vol 11, Iss 6, 774. HOSSAIN, M., MITRA, S., REZAEE, Z., & SARATH, B. (2011). Corporate Governance and Earnings Management in the Pre– and Post–Sarbanes-Oxley Act Regimes: Evidence from Implicated Option Backdating Firms. Journal of Accounting, Auditing & Finance, 279-315. LIMMROTH, S. (2020). Policies and Procedures: The Foundation for a Comprehensive HIPAA Program. Journal of Health Care Compliance, 41-46. McLaughlin, P. (2017). HIPAA Security Challenges in the Current Technology Ecosystem. Journal of Health Care Compliance, 5-12. PCI Security Standards Council. (2019). Best Practices for Maintaining PCI DSS Compliance. Maintaining PCI DSS Compliance Special Interest Group. S, M. (2018). Potential Harms of HIPAA. The Journal of the American Medical Association (JAMA), 2379. STRAUSS, L. J. (2017). Recent OCR Guidance Examines How HIPAA Applies to Cloud Computing. Journal of Health Care Compliance, 43-55. Wilson, D., Roman, E., & Beierly, I. (2018). PCI DSS and card brands: Standards, compliance and enforcement. Cyber Security: A Peer-Reviewed Journal, 73-82.