Let’s face it: compliance is boring.  It’s tough to face the sea of acronyms: PCI DSS, SOX, HIPAA, GLBA, FERPA, DMCA and the thick books of rules and regulations that come with each set.  Fortunately, compliance doesn’t need to be overly burdensome.  In this article, we look at a five-step process that you can use in your organization to build a solid compliance program that minimizes rework.

First, you’ll need to identify the specific compliance requirements that apply to your organization.  These will vary greatly and depend upon three main factors: