- What are the Assessments?
- What Assessments are currently available?
- How do I use the assessments?
- What do the other assessments focus on?
- What does IT Policy Compliance.com focus on?
- This sounds a lot like GRC, is it?
- What do you mean by 'outcomes'?
- Are there patterns to these outcomes?
- Have you been able to document this?
- What's the current basis of the Assessments?
- Are other organizations using the Assessments?
- What are others using these assessments used for?
- Were the assessments intended to be used these ways?
- How do I use the assessments to determine financial outcomes?
- How valid or reliable is the information?
- But isn’t Financial Services one of the best performing industries
- Then the outcomes reflect the experience of most organizations?
- Do you weight research findings in any way?
- How do I know how many companies are in the comparison with my industry?
- How often are the assessments updated and how often do you conduct research?
- Who establishes the agenda for the research?
- Is my use of these Assessments private and confidential?
- Are you using my entries for research?
- How do I find out which of my competitors participated in the benchmarks?
- Is there a suggested order for using the assessments?
- What do you mean by guess the percentile ranking?
- But the practices in my organization differ by line of business. How do I account for this?
- What do you mean instructive?
- How do I compile results across my company by myself?
- Do the assessments take into account risk appetites ?
- We'd like to run these assessments with a larger granularity of inputs, instead of using no , sometimes , and yes for answer options. Will you be delivering this?
- The current assessments use a limited set of questions. When you compare these to CobiT or ISO standards that run into the hundreds of questions, aren't these rather skimpy?
- If we're looking for something you don't have, how do we request it?
- I'm interested in making a contribution, what can I do?
- Anything else that might be helpful?
Upcoming Events
- February 20, 2012SANS Secure India
- February 27, 20124th CISO Middle East Summit
- March 5, 2012SANS Germany
- March 5, 2012SANS Singapore
- March 6, 2012CISO Breakfast Roundtable
- March 7, 2012CISO Breakfast Roundtable
TESTIMONIALS
A gem: nothing like this available anywhere else.
— , Education
LATEST BLOG
