ABSTRACT
The “Compliance” security clause has far-reaching implications for public or regulated organizations because of the changes in the legal and regulatory requirements over the last five years. Many of the laws and regulations that are applicable today did not exist when the first edition of the standard was developed. There are a total of ten controls and three control objectives for this clause. Executive management should take ample time reviewing the controls and concepts presented in this clause to identify any missing elements in their organization and operations.
