Listen and learn from Former Quality Director at GlaxoSmithKline, Peter Murray as he shares insights on how life sciences organizations can stay on top of the changing risk-benefit profile of the supply chain by implementing effective supplier governance and quality management programs. The panelists would also sheds light on the importance of having a well-controlled, resilient supply chain to help avoid risks, ensure compliance and achieve benefits like security of supply and cost efficiency.

Hi Vince, SOX IT General Controls are a bit tricky because they focus on IT Governance rather than Information Security. And due to different testing procedures ISO 27001 certifcates are rarely usable for SOX assurance (I have not seen an ISO 27001 Auditor taking samples yet). COBIT might be the best approach to implement SOX compliant IT General Controls. You will definitely want to have a look on 'COBIT for Assurance' from the COBIT bundle for first implementation. For optimization have a look at 'Aligning CobiT 4.1, ITIL V3 and ISO/IEC 27002 for Business Benefit'.

I have some idea of SOX and HIPPA and I think most of the requirements are covered in ISO 27001. I wanted to know from you all professional whats different in SOX and HIPPA from ISO 27001 and also if any one can provide me some checklists for these it would be great. -- Best Regards Vikas Dhanker +1 303 520 4395.

We usually take the process enviroment from ITIL, map relevant COBIT controls on it and merge ISO 27002 into them, where applicable. You can also try to align COBIT and ITIL with risk management like ISO 31000 or 27005 first (COBIT for risk is a great help).

Risk management helps bridging SOX requirements and COBIT with other relevant ISO Standards that are used in many companies (like ISO 9001 or 14001). However I highly advise to understand business first. In many middle market companies you can easily setup SOX compliant IT General Controls with less than 50 controls. Hi Vince, SOX IT General Controls are a bit tricky because they focus on IT Governance rather than Information Security.

And due to different testing procedures ISO 27001 certifcates are rarely usable for SOX assurance (I have not seen an ISO 27001 Auditor taking samples yet). COBIT might be the best approach to implement SOX compliant IT General Controls. You will definitely want to have a look on 'COBIT for Assurance' from the COBIT bundle for first implementation. For optimization have a look at 'Aligning CobiT 4.1, ITIL V3 and ISO/IEC 27002 for Business Benefit'.

We usually take the process enviroment from ITIL, map relevant COBIT controls on it and merge ISO 27002 into them, where applicable. You can also try to align COBIT and ITIL with risk management like ISO 31000 or 27005 first (COBIT for risk is a great help).

Stock manager advance 2 with point of sale module free download. Risk management helps bridging SOX requirements and COBIT with other relevant ISO Standards that are used in many companies (like ISO 9001 or 14001). However I highly advise to understand business first.

In many middle market companies you can easily setup SOX compliant IT General Controls with less than 50 controls. Hi Vince, SOX IT General Controls are a bit tricky because they focus on IT Governance rather than Information Security. And due to different testing procedures ISO 27001 certifcates are rarely usable for SOX assurance (I have not seen an ISO 27001 Auditor taking samples yet). COBIT might be the best approach to implement SOX compliant IT General Controls. You will definitely want to have a look on 'COBIT for Assurance' from the COBIT bundle for first implementation. For optimization have a look at 'Aligning CobiT 4.1, ITIL V3 and ISO/IEC 27002 for Business Benefit'.

We usually take the process enviroment from ITIL, map relevant COBIT controls on it and merge ISO 27002 into them, where applicable. You can also try to align COBIT and ITIL with risk management like ISO 31000 or 27005 first (COBIT for risk is a great help). Risk management helps bridging SOX requirements and COBIT with other relevant ISO Standards that are used in many companies (like ISO 9001 or 14001). However I highly advise to understand business first. In many middle market companies you can easily setup SOX compliant IT General Controls with less than 50 controls.