Compliance with External Requirements - Morland-Austin

IT GRC Knowledge Base » IT Governance Management » IT Governance – COBIT 5 » Management – Monitor (Monitor, Evaluate, Assess) » Compliance with External Requirements

This article provides an overview and summary of the COBIT 5 process Compliance with External Requirements, which is part of the Management – Monitor (Monitor, Evaluate, Assess) domain.

The purpose of this COBIT process is to evaluate that IT and organisation processes are compliant with the external laws, regulations and contractual obligations.

The following sub-governance processes are further supported by a list of control activities:

Identify external compliance requirements. Continually identify and monitor for changes in local and international laws, regulations and other external requirements that must be complied with.
Optimise response to external requirements. Update policies, standards, procedures and methodologies to ensure that legal, regulatory and contractual requirements are addressed and communicated.
Confirm external compliance. Confirm compliance of policies, standards, procedures and methodologies with legal, regulatory and contractual requirements.
Obtain assurance of external compliance. Obtain and report assurance of compliance and adherence with policies, standards, procedures and methodologies.

For more information please contact Morland-Austin at info@morland-austin.com.

Find your way around our IT GRC Framework Educate & Explore

Where next?

Increase your knowledge
Links & relationships within the framework

Find out how Compliance with External Requirements link(s) and relate(s) to:

Speak to one of our experts

Our IT GRC experts can help you with guidance and consultancy on ‘IT Governance – COBIT 5’