Title :
IT Compliance: Aligning Legal and Product Requirements
Author :
Breaux, Travis D. ; Antón, Annie I. ; Boucher, Kent ; Dorfman, Merlin
Abstract :
Laws and regulations increasingly impose requirements on IT business practices and products to achieve societal goals such as privacy, safety and accessibility. To meet these requirements, companies integrate their product development with an organizational infrastructure for managing compliance risks. The emphasis has often been on compliance with specific regulations, such as the 1996 Health Insurance Portability and Accountability Act (HIPAA) and the Sarbanes-Oxley Act of 2002. However, as the regulatory landscape for information becomes more complex, companies are adopting more programmatic ways to understand and integrate these requirements.
Keywords :
law; IT business practice; IT compliance; Sarbanes-Oxley Act; compliance risk; information technology; legal requirement; organizational infrastructure; product requirement; regulatory landscape; Instruments; Law; Legal factors; Markup languages; Natural languages; Ontologies; Privacy; Product development; Product safety; Risk management; IT compliance; Information technology; accessibility; assistive technologies for persons with disabilities; legal aspects of computing;
Journal_Title :
IT Professional
DOI :
10.1109/MITP.2009.101
