Comparative analyses of major regulations, frameworks, and standards.
Audit guides, checklists, and self-assessment tools for information management controls, critical infrastructure, information security, and other operational areas.
Rules, standards, and frameworks that aim to reduce the adverse impact of both known and unknown contingencies on operational and business processes.
Rules, standards, and other guidance related to technology changes and patches, segregation of duties in development environments, and related issues.
Guidance and regulations related to commercial electronic mailing and other business communications.
Standards, frameworks, and rules for risk management, high-level oversight, and business and operational governance.
Rules and guidance for protection of the security, integrity, and confidentiality of information and operations, including privacy guidelines with relation to general data management practices.
Guidelines for assessing and driving the completeness, soundness, and organizational integration of IT and information management and control practices.
Methods, checklists, and standards for the quantification and qualification of operational efficiency and effectiveness.
Rules and guidance for the retention and longer-term accessibility of business records and other electronic content.
Guidance and standards for application development lifecycles, secure coding, and other technical efforts.
Guidance on reducing risks and improving value in the technology acquisition and development, including vendor and outsourcing management.