Benchmark Research Report

Excerpt

The vast majority of organizations (about 7 of every 10) are operating at the norm. These firms are experiencing between three and fifteen compliance deficiencies that must be corrected to pass audit or from financial harm caused by IT security events.

In comparison, two of every ten organizations are suffering from very high deficiencies and IT security events resulting in financial harm. These laggards are experiencing an average of 35 such significant deficiencies each year.

In contrast, the industry leaders (about one of every ten organizations) are blessed with only two compliance or IT security deficiencies each year.

Figure: Performance Results for IT Compliance 

Table of Contents

Executive Summary
Key findings
Analysis summary
Leaders versus laggards
Actions that make a difference
Recommendations

Key Findings
Regulatory compliance results vary
Procedures and controls contributing to compliance deficiencies
Critical success factors for improving regulatory compliance results
Capabilities and best practices for regulatory compliance
Additional actions of compliance leaders
Analysis and recommendations
Challenges and opportunities for:
- Industry leaders
- Industry norm
- Industry laggards

Appendix
Research methodology
Sponsors

List of Figures
Figure 1: Performance results for regulatory compliance
Figure 2: Procedures and controls found most deficient
Figure 3: Differences in capabilities and practices by performance results

List of Tables
Table 1: Critical success factors for improving compliance results
Table 2: Additional actions to improve compliance results

© ITPolicyCompliance.com, 2006