출처 : http://www.business2community.com/strategy/8-steps-to-effective-data-compliance-0382976
컴플라이스언스가 서서히 국내에서도 도입되고 있습니다. 기사에서도 언급하듯이 컴플라이언스 준수를 못했을 경우의 충격을 고려한다면 빨리 도입해야 할 것입니다. 그러데 어떻게 준비할까요? 여기에서 제시하는 8가지 단계를 적용해보시죠.
1. 필요한 법적 요구사항들 정리
2. 컴플라이언스 절차 준비
3. 필요한 데이타 솔루션을 확보
4. 자체적으로 감사실시
5. 보안강화
6. 재난에 대비
7. 작은 이슈도 챙기자
8. 자체 감사를 지속적으로
8 Steps to Effective Data Compliance
If you were to write down a list of your organization’s vital functions, in order of importance, where would data compliance appear? Far too many organizations push data compliance towards the bottom of the list. Considering the potential damage non-compliance can cause, you need to start pushing it back to the top of your priorities.
1. Assess Your Regulatory Requirements
The first step may seem obvious but you’d be surprised at how many organizations implement procedure and buy equipment before reviewing their data compliance requirements. Especially in less regulated industries. It’s a simple step; it’s an easy one to miss too.
2. Set/Edit Data Compliance Procedure
Once you have reviewed your requirements you need to address policy. Every member of staff from the top down should be aware of their individual responsibilities. The most common data compliance problem isn’t a lack of procedure; it’s individual errors or confusion over requirements.
3. Identify Appropriate Data Solutions
At the same time, you need to make sure you have the appropriate hardware and software to retain your data. You should assess your data backups and email archiving capabilities and ensure they provide the appropriate space and security. It’s also important to check on your ability to present data. A lot of businesses get into difficulty with data they have but can’t access.
4. Self-Audit Regularly
The key to data compliance is self-audit, you need to set a schedule and stick to it. They are vital in identifying gaps and highlighting best practice. The more you audit, the better your compliance.
5. Keep Security Up-to-Date
Data security isn’t just about locking the door to the server room. You need to stay on top of your security and encryption software and keep it up to date. That means following trends and reviewing industry changes. Not just clicking ‘update software’ once a week.
6. Be Disaster Ready
Last years East Coast Superstorm in the US demonstrated just how unpredictable the weather can be. You can’t afford to assume your data is secure in one location. The most comprehensive data compliance strategies include disaster recovery. Because you just never know when disaster will strike.
7. Don’t Ignore Minor Issues
Data compliance is a broad term; it’s easy to think of it as an organizational issue only. But all it takes is one misplaced document or one security breach to cause real problems. Don’t let minor issues grow; tackle them as soon as they’re identified.
8. Self-Audit Regularly
That’s not a typo. The key to data compliance really is self-audit and it never stops.
Read more at http://www.business2community.com/strategy/8-steps-to-effective-data-compliance-0382976#PQZIycf4mh2pQsVi.99
댓글 없음:
댓글 쓰기