Business Credit Business Travel Franchising Personal Finance Sales & Selling Technology Women in Business Careers E-Commerce & Internet Finance & Accounting Labor & Employment Management Marketing & Advertising Operations Starting a Business > See All

by Title A-H by Title I-P by Title Q-Z > See All

Business Intelligence Small Business Blog Business Planning E-Commerce & Internet Finance & Accounting Home-Based Business Human Resources & Employment Management & Leadership Marketing & Advertising Operations Sales Technology Women in Business > See All

Hiring & Firing Intellectual Property Internet & Technology Legal Mergers & Acquisitions Money & Fundraising Real Estate/Landlord-Tenant Sales & Marketing Starting a Business Business Guides Forms Kits > See All

Construction Medical Practices Restaurants Retail Trade Manufacturing Real Estate Wholesale Trade > See All

Accounting Advertising & Marketing Computers & Software Financial Services Human Resources Internet & Online Management Small Business > See All

Business Exchange Business Answers Buyer's Guides Franchise Opportunities Glossary Trials & Downloads Partner Resources Podcast Library Quote Center Video Library Web Site Tools > See All

Unified project grid puts regulatory projects in the IT safe zone

By Staff
Publication: Manufacturing Business Technology
Date: Saturday, October 1 2005

Regulatory compliance just got a bit easier, thanks to the Unified Compliance Project (UCP). Undertaken by the Seattle-based IT Compliance Institute (ITCI), UCP's goal is to map requirements and eliminate overlap in some 60 regulations and accompanying standards.

The effort required

to comply with this profusion of regulations often spawns piecemeal approaches that lead to redundant efforts and duplicate costs. "It's confusing—a real alphabet soup," admits Cass Brewer, director of education and research for ITCI. Not only is there Sarbanes-Oxley, but there's AS2, COSO, COBIT, TREAD, ISACA, WEEE, and others, all of which governing bodies must deal with.

"To date, companies have largely approached regulatory compliance in a project-based fashion," says Brewer, adding that there is little oversight to guard against redundant and inconsistent efforts to meet regulations. "The UCP provides a standardized view of regulatory requirements," says Brewer, "which enables companies to compare in a practical and tangible way the need to meet requirements across multiple regulations."

The UCP, codeveloped with Network Frontiers , a Los Altos, Calif.-based IT product research group, was a two-year endeavor to map and match requirements, and post the work online as a service to ITCI members. "It is essentially a series of tables that makes it easy to look across any number of authorities to view IT controls a company must follow and sign off on," Brewer explains.

Each regulation is broken down by what ITCI terms critical "IT impact zones." Each zone is then mapped to the more than 60 standards and regulations to reveal a holistic view of what is mandated. The goal is to facilitate a strategic approach to reducing compliance costs, limiting liabilities, and maximizing investments.

"When companies understand where requirements for information security, records management, and other IT goals align, they can more easily leverage technology across multiple compliance efforts," maintains Brewer.

ITCI membership is free. Information on the Unified Compliance Project can be found at: www.itcinstitute.com/ucp .

IT impact zones in regulatory compliance initiatives:

Audit and risk management
Design and implementation
Systems acquisition
Operational management, IT staff management, and outsourcing
Records management
Technical security
Physical security
Systems continuity
Monitoring, measurement, and reporting
Privacy

Tools for zone management:

IT control objectives mapped to regulations
Query functionality to identify multiple required controls
Foundation-building Webinar schedules
Related articles, news, and white papers
Information on technology solutions

Source: IT Compliance Institute

In addition, make sure to read these articles:

Permabit Financial Services Customer Recognized for Excellence in Regulatory Compliance.

CAMBRIDGE, Mass. -- Seattle-Northwest Securities Corporation Wins Prestigious Storage Award Based On Permeon Compliance Vault Software and Adherence To SEC 17a-4 Permabit(TM), the storage software ......

Permabit Helps Seattle Northwest Securities Solve Compliance Challenges.

CAMBRIDGE, Mass. -- Fourth graph, second sentence of release should read: Permabit's solution had more flexibility and scalability than other solutions and was far more ......

Oracle E-Business suite helps innovative biotech cope with FDA compliance

The process of developing a new drug, running the clinical trials, and getting U.S. Food & Drug Administration (FDA) approval is a lengthy oneoften more ......

Scott & Scott LLP Attorney Selected to Present at ITCi Conference on IT Compliance.

DALLAS -- Scott & Scott, LLP (www.scottandscottllp.com), a Dallas-based law and technology services firm focusing on privacy and network security, announces today that Julie Machal-Fulks ......

101communications Launches IT Compliance Institute to Help IT Organizations Struggling...

Business Editors/High-Tech Writers CHATSWORTH, Calif.--(BUSINESS WIRE)--Jan. 12, 2004 ITCi: -- Educational Events, Fully Searchable Database of Global Regulations and Best Practices, and a Cutting-Edge Research ......

The IT Compliance Institute (ITCi) to Host Conference in San Diego, CA.

One-of-a-Kind Conference Explores Issues Surrounding the Role of Technology in Regulatory Compliance SEATTLE -- The IT Compliance Institute today announced the IT Compliance Conference ......

Latest NCR ImageMark Technology Offers Early Review to Help Reduce Bank Exposure to Risk...

Software Identifies Suspect Deposits, Speeding up Decision-Making and Slowing Down Fraud DAYTON, Ohio -- With the increase in check fraud and subsequent regulatory compliance issues, ......

IT Compliance Institute Launches the Unified Compliance Project (UCP); Groundbreaking...

SEATTLE -- Today, the IT Compliance Institute, an objective global authority on the role of technology in regulatory compliance, announced the launch of its ......

Regulatory Compliance IT Spending Set to Drop Slightly Across European Banking Sectors.

DUBLIN, Ireland -- Research and Markets (http://www.researchandmarkets.com/reports/c43727) has announced the addition of Datamonitor's new report: Regulatory Compliance IT Spend in Europe (Databook) to their offering....

Assessing Your Storage and Backup for Regulatory Compliance

Compliance is one of the most talked about issues in data management in recent years. As deadlines for federally mandated programs loom near, the issue ......

OMG Forms Two Groups to Address Complex Regulatory Compliance Issues.

NEEDHAM, Mass. -- OMG Regulatory Compliance Alliance (ORCA) and Regulatory Compliance SIG to Address the IT Impact of Regulatory Compliance Requirements The Object Management ......

Call for Participation: OMG Regulatory Compliance Alliance (ORCA(TM)) Developing Open...

NEEDHAM, Mass. -- The Object Management Group(TM) (OMG(TM)) and the OMG Regulatory Compliance Alliance (ORCA(TM)) today issued a call for participation for a unique ......

Corporations Struggle to Achieve Regulatory Compliance Despite Increasing Expenditures;...

ENGLEWOOD, Colo. -- Most corporations are not reaching acceptable levels of compliance, even as they spend more to implement multiple compliance mandates, according to ......

Adaptive Joins OMG's Regulatory Compliance Alliance as Charter Member.

NEEDHAM, Mass. -- The Object Management Group(TM) (OMG(TM)), today announced that Adaptive has joined the OMG Regulatory Compliance Alliance (ORCA) as a charter member....

AssurX Announces OnDemand PreConfigured Quality Management and Regulatory Compliance...

MORGAN HILL, Calif. -- AssurX, Inc., the leader in enterprise quality management and regulatory compliance solutions, today announced the release of its new CATSWeb PreConfigured ......

T T T

Digg It

del.icio.us

Related Resources

Press Releases

Permabit Financial Services Customer Recognized for Excellence in Regulatory Compliance.

Permabit Helps Seattle Northwest Securities Solve Compliance Challenges.

CAMBRIDGE, Mass. -- Fourth graph, second sentence of release should read: Permabit's solution had more flexibility and scalability than other solutions and was far more ......

Expeditors Names Divecchio Principal, Expeditors Tradewin, LLC.

Business Editors SEATTLE--(BUSINESS WIRE)--April 10, 2001 Expeditors International of Washington, Inc. (Nasdaq:EXPD) today announced the appointment of Paul DiVecchio, to Principal of Export Regulatory Compliance ......

How to Buy a Business in 10 (not so) Easy Steps

In this article, I outline a ten-step process to purchase a business in a privately negotiated transaction. The ten steps are: 1. Assemble a team ...

Two New Products Enforce Digital Rights Management on Intranets

InfoWorld's Mike Heck is out with a review of enterprise digital rights management products that can be used to control certain protected documents from ...

The Future of the Physician Business Practice

Today, All Business.com is launching a major expansion of the information and services for the business of physician practices. We are an industry that ...

Unified project grid puts regulatory projects in the IT safe zone

IT impact zones in regulatory compliance initiatives:

Tools for zone management:

In addition, make sure to read these articles:

Related Resources

Press Releases

Related Posts

Business Resources

Sponsored Links