The IT Policy Compliance Group has has launched a new Web site and expanded its membership with the addition of Protiviti. The Web site features research findings, guidance, and contributions from compliance experts to assist organisations with improving compliance results.

The IT Policy Compliance Group’s latest research report titled “Managing Spend to Improve IT Compliance Results” is now available for download.  According to the report, IT compliance leaders are spending 9 percent more on equipment and software and 11% less on contractors.
The IT Policy Compliance Group is a group of compliance professionals who have come together to promote the development of fact-based research and information designed to help organisations more effectively achieve their policy and regulatory compliance goals.
The group is dedicated to expanding awareness of IT policy compliance as a valuable business function and helping to clarify the value of IT policy compliance through research and publishing activities that helps IT professionals to define, implement, and sustain IT policies that demonstrate and promote compliance.  
The Web site is designed to deliver actionable content to help IT professionals meet the policy and regulatory compliance goals of their organisations.  For example, past research indicates that IT compliance leaders implement continuous controls monitoring on average of once every 21 days.
By comparison, industry laggards are measuring results once every nine months.  Supported by members that include:  Institute of Internal Auditors, Computer Security Institute, Protiviti and Symantec (collectively known as the IT Policy Compliance Group), the web site delivers fact-based information without advertising, marketing, and sales pitches.
“The research conducted by the IT Policy Compliance Group provides insight into the actions, capabilities, practices, and success factors for organisations seeking to meet today’s growing number of regulatory mandates, and internal policy initiatives without introducing too many controls that could otherwise reduce competitive business results” says Patrick Evans, regional director of Symantec Africa.
“The IT Policy Compliance Group helps fill gaps in our knowledge about specific IT compliance and IT security practices by conducting primary research among enterprise, medium and small businesses.”
The IT Policy Compliance Group provides practical guidelines and best practices for helping IT professionals and auditors plan, implement and manage successful compliance programs.