|
Non-disclosure agreements (also known as confidentiality agreements) prohibit the communication of certain non-public business information by individuals. Use this...
|
|
|
A number of legislative issues can pose a liability to organizations that fail to properly dispose of obsolete computers and other electronic equipment. Use this document...
|
|
|
Engaging with Info-Tech to conduct a COBIT-based operations workshop on risk management was a natural next step.
|
|
|
Responsibilities for governance of the internal controls system should be integrated into the risk management and overall governance function of the IT organization. Use...
|
|
|
Self-assessments of the system of internal control should be aligned with the risk assessment process and completed at least annually or upon any major change to the...
|
|
|
Internal controls are only as effective as their level of adoption. Use this template to ensure that users are aware and compliant with internal controls.
|
|
|
Use this template as the one document where your metrics and their definitions live, and update it as needed.
|
|
|
The document retention policy ensures that copies of certain documents for legal, regulatory, and/or operations reasons are made, committing companies to good business...
|
|
|
The removable media acceptable use policy defines the standards, procedures, and restrictions for end users who have legitimate business requirements to connect portable...
|
|
|
The audit log review policy will outline the standards across company systems for the review of audit logs.
|
|
