This guide summarizes some basic principles of money laundering and terrorist financing, followed by discussions of the ...

This sample policy outlines the measures and actions an organization uses to safeguard equipment and information on comp...

A recent breach has raised serious questions about whether boards of directors and senior management are asking the righ...

This audit report presents the results of vulnerability assessments and penetration testing performed on an organization...

This sample policy provides a consistent, standardized and proficient method for the admission of patients.

This sample policy explains the procedures for coordinating the proper registration and maintenance of vendor informatio...

Boards of directors need to ensure that the organizations they serve are improving their cybersecurity capabilities cont...

This sample policy provides guidelines for securing user information.

This memo outlines minimum IT controls around user access, change control, backup, privacy, licenses and document retent...

This memo documents internal audit's summary of findings from a data governance review.

This memo's purpose is to notify an individual regarding the possibility of a personal information breach and explain th...

The purpose of this work program—focused on access to programs and data—is to outline the IT general controls to be test...