Compliance Management: Difference between revisions
From IT Process Wiki
No edit summary |
No edit summary |
||
| Line 1: | Line 1: | ||
< | <itpmch><title>Compliance Management | IT Process Wiki</title> | ||
<meta name="keywords" content="compliance management, itil compliance, itil compliance management, compliance management itil, compliance process, process compliance" /> | |||
<meta name="description" content="Compliance Management: ITIL process definition - Sub-processes - Terms - Additional information on ITIL Compliance Management." /> | |||
</itpmch> | |||
<imagemap> | <imagemap> | ||
Image:ITIL-Wiki-de-es.jpg|DE - ES - Compliance Management|100px | Image:ITIL-Wiki-de-es.jpg|DE - ES - Compliance Management|100px | ||
| Line 8: | Line 11: | ||
<br style="clear:both;"/> | <br style="clear:both;"/> | ||
<html><div itemscope="itemscope" itemtype="https://schema.org/WebPage"><!-- define schema.org/WebPage --><p></html> | |||
<p> </p> | <p> </p> | ||
'''<span id="Overview">Objective:</span>''' <html><span itemprop="description"><i><span itemprop="alternativeHeadline">ITIL <span itemprop="name Headline">Compliance Management</span></span></i> aims to ensure IT services, processes and systems comply with enterprise policies and legal requirements.</span></p> | |||
<p><b>Part of</b>: <a itemprop="isPartOf" href="https://wiki.en.it-processmaps.com/index.php/ITIL_Service_Design" title="ITIL Service Design">Service Design</a></html> | |||
'''Process Owner''': [[Compliance Management#Compliance Manager|Compliance Manager]] | '''Process Owner''': [[Compliance Management#Compliance Manager|Compliance Manager]] | ||
| Line 20: | Line 21: | ||
<p> </p> | <p> </p> | ||
== Process Description == | ==Process Description== | ||
[[Image:Itil-compliance-management.jpg|right|thumb|375px|alt=Compliance Management ITIL|[https://wiki.en.it-processmaps.com/images/pdf/process_overview_compliance_management_itilv3.pdf ITIL Compliance Management]]] | [[Image:Itil-compliance-management.jpg|right|thumb|375px|alt=Compliance Management ITIL|[https://wiki.en.it-processmaps.com/images/pdf/process_overview_compliance_management_itilv3.pdf ITIL Compliance Management]]] | ||
| Line 34: | Line 35: | ||
<p> </p> | <p> </p> | ||
== Sub-Processes == | ==Sub-Processes== | ||
No sub-processes are specified for [[Compliance Management|ITIL Compliance Management]]. | No sub-processes are specified for [[Compliance Management|ITIL Compliance Management]]. | ||
| Line 42: | Line 43: | ||
== Definitions == | == Definitions == | ||
The following ITIL terms and acronyms ( | <html><div itemscope="itemscope" itemtype="https://schema.org/ItemList"><!-- define schema.org/ItemList --> | ||
<meta itemprop="itemListOrder" content="Ascending" /> | |||
<p>& | <p><span itemprop="name">The following <a href="/index.php/ITIL%20Glossary#ITIL%20Glossary%20A-Z" title="ITIL Glossary">ITIL terms and acronyms</a> (<i>information objects</i>) are used in the ITIL Compliance Management process to represent process outputs and inputs:</span> | ||
</p> | |||
<p> </p> | |||
<p><b><span id="Compliance_Register" itemprop="itemListElement">Compliance Register</span></b> | |||
</p> | |||
<ul><li itemprop="description">The Compliance Register is a tool used by the Compliance Management process to keep an overview of all compliance requirements and the measures applied to ensure their enforcement. | |||
</li></ul> | |||
<p><br /> | |||
</p><p><b><span id="Compliance_Review" itemprop="itemListElement">Compliance Review</span></b> | |||
</p> | |||
<ul><li itemprop="description">The Compliance Review documents the results of regular process and system compliance assessments. In particular, it contains any identified deviations from compliance requirements, as well as measures to correct the situation. | |||
</li></ul> | |||
<p><br /> | |||
</p><p><b><span id="Enterprise_Policies_and_Regulations" itemprop="itemListElement">Enterprise Policies and Regulations</span></b> | |||
</p> | |||
<ul><li itemprop="description">A set of binding enterprise policies and regulations which are an important input for the <strong class="selflink">Compliance Management</strong> process. | |||
</li></ul> | |||
</div><!-- end of schema.org/ItemList --><p></html> | |||
<p> </p> | <p> </p> | ||
== Roles | Responsibilities == | == Roles | Responsibilities == | ||
'''<span id="Compliance Manager">Compliance Manager - Process Owner</span>''' | |||
*The Compliance Manager's responsibility is to ensure that standards and guidelines is followed, or that proper, consistent accounting or other practices are being employed. | |||
*This includes to make sure that external legal requirements are fulfilled. | |||
<p> </p> | <p> </p> | ||
{| border="1 | {| border="1" cellpadding="5" cellspacing="0" style="margin-left: auto; margin-right: auto; text-align:center;" valign="top" | ||
|- | |- | ||
| | |style="vertical-align:top; text-align:center" colspan="2" style="background:#ffffdd;"| '''Responsibility Matrix: ITIL Compliance Management''' | ||
|- | |- | ||
! | !style="background:#ffffee; width: 65%; text-align:center"| ITIL Role / Sub-Process | ||
! style="background:#ffffee;" | [[Compliance Management#Compliance Manager|Compliance Manager]] | ! style="background:#ffffee;" | [[Compliance Management#Compliance Manager|Compliance Manager]] | ||
|- | |- | ||
| | |style="text-align:left;" |[[Compliance Management|Compliance Management]]<br /> ''(no sub-processes specified)'' | ||
| A[[Compliance Management#Accountable|<small>[1]</small>]]R[[Compliance Management#Responsible|<small>[2]</small>]] | | A[[Compliance Management#Accountable|<small>[1]</small>]]R[[Compliance Management#Responsible|<small>[2]</small>]] | ||
|- | |- | ||
| Line 86: | Line 94: | ||
<p> </p> | <p> </p> | ||
<p> </p> | |||
==[ Infobox ]== | |||
<html><table class="wikitable"> | |||
<tr> | |||
<td>Link to this page:</td> | |||
<td><a itemprop="url" href="https://wiki.en.it-processmaps.com/index.php/Compliance_Management">https://wiki.en.it-processmaps.com/index.php/Compliance_Management</a></td> | |||
</tr> | |||
<tr> | |||
<td>Languages:</td> | |||
<td><span itemprop="inLanguage" content="en">English</span> | <span><a itemprop="citation" class="external text" href="https://wiki.de.it-processmaps.com/index.php/Compliance_Management" title="Compliance Management">Deutsch</a></span> | <span><a itemprop="citation" class="external text" href="https://wiki.es.it-processmaps.com/index.php/ITIL_Gestion_de_Cumplimientoo" title="Gestión de Cumplimiento">español</a></span></td> | |||
</tr> | |||
<tr> | |||
<td>Image:</td> | |||
<td style="vertical-align:top"><a itemprop="primaryImageOfPage" href="https://wiki.en.it-processmaps.com/images/8/89/Itil-compliance-management.jpg" title="Compliance Management">ITIL Compliance Management (.JPG)</a></td> | |||
</tr> | |||
<tr> | |||
<td>Author:</td> | |||
<td><span itemprop="author">Stefan Kempter</span>, <span itemprop="creator copyrightHolder publisher">IT Process Maps</span> <a rel="author" href="https://plus.google.com/111925560448291102517"><img style="margin:0px 0px 0px 0px;" src="/skins/Vector/images/itpm/bookmarking/gplus.png" width="16" height="16" title="By: Stefan Kempter | Profile on Google+" alt="Author: Stefan Kempter, IT Process Maps GbR" /></a></td> | |||
</tr> | |||
</table> | |||
<p><small> | |||
<span itemscope="itemscope" itemtype="http://data-vocabulary.org/Breadcrumb"> | |||
<a href="https://wiki.en.it-processmaps.com/index.php/Compliance_Management#Process_Description" itemprop="url"><span itemprop="title">Process Description</span></a> › | |||
</span> | |||
<span itemscope="itemscope" itemtype="http://data-vocabulary.org/Breadcrumb"> | |||
<a href="https://wiki.en.it-processmaps.com/index.php/Compliance_Management#Definitions" itemprop="url"><span itemprop="title">Definitions</span></a> › | |||
</span> | |||
<span itemscope="itemscope" itemtype="http://data-vocabulary.org/Breadcrumb"> | |||
<a href="https://wiki.en.it-processmaps.com/index.php/Compliance_Management#Roles_.7C_Responsibilities" itemprop="url"><span itemprop="title">Roles</span></a> | |||
</span> | |||
</small></p> | |||
</div><!-- end of schema.org/WebPage --><p></html> | |||
<!-- This page is assigned to the following categories: --> | <!-- This page is assigned to the following categories: --> | ||
[[Category:ITIL V3]][[Category:ITIL 2011]][[Category:ITIL process]][[Category:Service Design|Compliance Management]][[Category:Compliance Management|!]] | [[Category:ITIL V3]][[Category:ITIL 2011]][[Category:ITIL process]][[Category:Service Design|Compliance Management]][[Category:Compliance Management|!]] | ||
<!-- --- --> | <!-- --- --> | ||
Revision as of 17:34, 23 December 2013
Objective: ITIL Compliance Management aims to ensure IT services, processes and systems comply with enterprise policies and legal requirements.
Part of: Service Design
Process Owner: Compliance Manager
Process Description
Compliance issues are addressed within several processes in ITIL; there is, however, no dedicated Compliance Management process.
Compliance is an increasingly important topic for IT organizations, so at IT Process Maps we decided to assign clear responsibilities for ensuring compliance, which meant introducing a specific Compliance Management process as part of the ITIL® Process Map.
ITIL does not provide a detailed explanation of all aspects of Compliance Management. Rather, it highlights the most important activities and assists in identifying interfaces with other Service Management processes.
Following the introduction of Design Coordination in ITIL 2011 the information flows have been adapted slightly. The process overview of ITIL Compliance Management (.JPG) is showing the most important interfaces (see Figure 1).
Sub-Processes
No sub-processes are specified for ITIL Compliance Management.
Definitions
The following ITIL terms and acronyms (information objects) are used in the ITIL Compliance Management process to represent process outputs and inputs:
Compliance Register
- The Compliance Register is a tool used by the Compliance Management process to keep an overview of all compliance requirements and the measures applied to ensure their enforcement.
Compliance Review
- The Compliance Review documents the results of regular process and system compliance assessments. In particular, it contains any identified deviations from compliance requirements, as well as measures to correct the situation.
Enterprise Policies and Regulations
- A set of binding enterprise policies and regulations which are an important input for the Compliance Management process.
Roles | Responsibilities
Compliance Manager - Process Owner
- The Compliance Manager's responsibility is to ensure that standards and guidelines is followed, or that proper, consistent accounting or other practices are being employed.
- This includes to make sure that external legal requirements are fulfilled.
| Responsibility Matrix: ITIL Compliance Management | |
| ITIL Role / Sub-Process | Compliance Manager |
|---|---|
| Compliance Management (no sub-processes specified) |
A[1]R[2] |
Remarks
[1] A: Accountable according to the RACI Model: Those who are ultimately accountable for the correct and thorough completion of the ITIL Compliance Management process.
[2] R: Responsible according to the RACI Model: Those who do the work to achieve a task within ITIL Compliance Management.
[ Infobox ]
| Link to this page: | https://wiki.en.it-processmaps.com/index.php/Compliance_Management |
| Languages: | English | Deutsch | español |
| Image: | ITIL Compliance Management (.JPG) |
| Author: | Stefan Kempter, IT Process Maps  |
