The first phase of this project will kick-start your security compliance management project in regards to HIPAA and/or SOX. In this phase, you will:
- Identify compliance obligations that need to be followed.
- Define the scope and boundaries of compliance management.
- Assess the current state of the security compliance within HIPAA and/or SOX.
After identifying the current state of security compliance, it is possible for organizations to identify gap initiatives in the next phase.