Services |
MethodologyComplianceLLC has developed a comprehensive, field-tested Compliance Assessment Methodology, which is the backbone of our services. The methodology is customized based on a client's industry-specific best practices and regulations, corporate governance policies, and government legislation such as the Sarbanes Oxley Act. Our methodology is based on a compilation of industry-leading IT, networking and security frameworks and standards including COSO, ISO, COBIT, BITS, and 10 domains for CISSP certification from (ISC)2. Detailed work programs cover 150 topics and consist of over 800 questions in eight key operational areas including Corporate Policy & Governance, Standards & Operations, Physical Site Security, Human Resource Management Policy & Procedures, Disaster Recovery & Contingency Planning, Information Systems Security, Immigration Practices and Contracting Practices. Priority of work programs is based on the client's forced-ranking of risk factors and overall business objectives. |