ABSTRACT
INTRODUCTION The ability to perform cost-effective compliance is dependent on the organizations understanding of requirements and their compliance capability. This chapter applies the established capability maturity model (CMM) to computer compliance. Examples of compliance metrics and measures are examined to draw lessons. The metrics cover prospective validation as well as operation and maintenance of computer systems. Lean manufacturing and six sigma are promoted as tools that organizations can use to streamline and improve the performance of their compliance processes.
