How To Establish Governance and Policy Structure to Support Compliance With Multiple Frameworks

This is Part 1 of our four-part video series. In it, we will discuss establishing a governance and policy structure that enables organizations to comply with multiple frameworks like SOC 2, ISO 27001, and PCI DSS.

We will provide tools, walk through common scenarios, and show how you can implement it all in Phalanx GRC.

00:00 Intro
02:22 Multiple Framework Compliance Problem
03:46 Multiple Framework Compliance Solution
05:13 The Single Framework Strategy
06:59 Context and Business Alignment
18:08 Security Program Oversight
28:44 Organizational Structure
41:45 Q&A

Here are the items that are covered in the video:

Security Team Operating System E-Book: https://risk3sixty.com/whitepaper/security-team-operating-system-ebook/

Building and ISO 27001 ISMS Youtube Video: https://youtu.be/8sHa9DW2LiA

Building a Risk Management Program in Phalanx YouTube Video: https://youtu.be/2XlOLZdDNpY

Phalanx GRC: www.phalanxgrc.com

Security Program Roles and Responsibilities RACI Template: https://risk3sixty.com/whitepaper/security-program-raci-chart-template/

Single Framework Strategy Whitepaper: https://risk3sixty.com/whitepaper/single-framework-for-multiple-certifications/
Be the first to comment