Human beings are often rebels by nature and far from compliant. People continuously question and pursue new innovations, which is what keeps the world progressing. So why has compliance been a topic of little debate over the past couple years? In a post for All Things ITSM, Harry Repo explores whether there is actually complete compliance.
Before the discussion of compliance can even take place, it needs to be definitively defined. Compliance is when “you comply with a need or rule set up by others or yourself.” Basically, a person can be compliant to whatever set of rules they wish, but the level of compliance is the element up for debate.
It is easy to get wrapped up in this idea of associating compliance with regulatory requirements, but it is truly more than that. Every action a person takes is tied in with compliance. For example, a person utilizing software asset management (SAM) only wants to pay for the software that they utilize. In order to do this effectively, they need to control the most pertinent risks and be compliant with any licensing agreements. ITIL is rife with compliance because it is the tool that helps establish policies, processes, and routines. Additionally, think about everyday assets to a business, such as: security, resilience, business, licenses, scrum, agile, and more.
So what does all this mean for you and your business? In order to be compliant, you need to fully understand your business and the standards behind it. You will need to make a risk assessment and automate things that you can. Always review your findings. If you uncover any discrepancies, it is vital that you make motions to rectify them compliantly. Additionally, keep in mind that compliance is continuously expanding and improving. Compliance does not merely start and end; it is a continuous process.
You can view the full post here: http://allthingsitsm.com/compliance-and-itsm/