Help:Contents: Difference between revisions
No edit summary |
No edit summary |
||
| Line 24: | Line 24: | ||
[http://www.aicpa.org/info/sarbanes_oxley_summary.htm '''Sarbanes-Oxley''']<br> | [http://www.aicpa.org/info/sarbanes_oxley_summary.htm '''Sarbanes-Oxley''']<br> | ||
[http://aspe.hhs.gov/admnsimp/pl104191.htm '''HIPAA''']<br> | [http://aspe.hhs.gov/admnsimp/pl104191.htm '''HIPAA''']<br> | ||
[http://www.ftc.gov/privacy/glbact | [http://www.ftc.gov/privacy/privacyinitiatives/glbact.html '''GLBA''']<br> | ||
[http://usa.visa.com/business/accepting_visa/ops_risk_management/cisp.html '''PCI''']<br> | [http://usa.visa.com/business/accepting_visa/ops_risk_management/cisp.html '''PCI''']<br> | ||
[http://csrc.nist.gov/sec-cert/ '''FISMA''']<br> | [http://csrc.nist.gov/sec-cert/ '''FISMA''']<br> | ||
Revision as of 12:37, 11 May 2006
File:Greenlock.jpg The status of this control objective is acceptable.
File:Yellowlock.jpg The status of this control objective requires additional attention.
File:Bluelock.jpg The status of this control objective has been remediated.
File:Redlock.jpg The status of this control objective is not acceptable and requires remediation.
Consult the User's Guide for information on using the wiki software.
Getting started
A brief explanation of industry or legislative control requirments can be found through the links below.
Sarbanes-Oxley
HIPAA
GLBA
PCI
FISMA
NIST SP 800-66
Ditscap
Control Exception: If a control condition exists that is exempt from testing, documentation should be available.
User Defined: Any control that is truly unique to the enterprise should be noted accordingly.
--Mdpeters 10:46, 10 May 2006 (EDT)