by Caroline Simões and Leonardo Freitas

The term Compliance means "conforming to, obeying, abiding by". In information technology (IT), being compliant means conforming to rules, regulations, or best practices. There are currently several standards of best practices in the IT area, which are adopted by managers in the process of implementing internal controls and managing IT-related risks. In this article we present summarized descriptions of two of the main standards used in the IT area. Download (PDF)