From the course: ISACA Certified in Risk and Information Systems Control (CRISC) Cert Prep

Unlock this course with a free trial

Join today to access over 25,300 courses taught by industry experts.

External requirements and governance documents

External requirements and governance documents

From the course: ISACA Certified in Risk and Information Systems Control (CRISC) Cert Prep

Start my 1-month free trial Buy for my team

External requirements and governance documents

- [Instructor] Next, we're going to talk about external requirements and the governance documents that we'll build to build out and strengthen our governance program. So external requirements can really be summed up into three large categories. There's your big one that people always cite, and that's going to be your laws. Some parts of the world call them laws, sometimes they're called rules, regulations. Think about this as something bad will happen, and that will come from some sort of governing organization, your own government, another country's government, local government, federal government. Again, depending on where you're located and what that looks like for you. Next, I put in industry expectations. This is something where if something were to go wrong or you weren't necessarily following them, we're not talking about that the government's going to levy you a fine, but rather that the industry may give some…

Contents