Light

jmccarthy / my-company Goto Github PK

View Code? Open in Web Editor NEW

0.0 3.0 0.0 21 KB

Compliance

my-company's Introduction

My Company Compliance Program

This repository consolidates all documents related to the My Company Compliance Program.

Structure

Compliance documents are organized as follows:

narratives/     Narratives provide an overview of the organization and the compliance environment.
policies/       Policies govern the behavior of employees and contractors.
procedures/     Procedures prescribe specific steps that are taken in response to key events.
standards/      Standards specify the controls satisfied by the compliance program.
templates/      Templates control the output format of the HTML Dashboard and PDF assets.

Building

Assets are built using comply, which can be installed via brew install comply (macOS) or go get github.com/strongdm/comply

Publishing

The output/ directory contains all generated assets. Links in the HTML dashboard a relative, and all dependencies are included via direct CDN references. The entire output/ directory therefore may be uploaded to an S3 bucket or other static asset host without further modification.

Dashboard Status

Procedure tracking is updated whenever comply sync is invoked. Invoke a sync prior to comply build to include the most current ticket status.

Procedure Scheduler

Any procedures/ that include a cron schedule will automatically created in your configured ticketing system whenever comply scheduler is executed. The scheduler will backfill any overdue tickets.

Deployment Recommendation

Invoke a script similar to the following at least once per day:

#!/bin/bash
#
# prerequisites:
#   git access
#   ticketing configuration in comply.yml
#   upload.sh to publish static site
#

# get latest policies and procedures
git pull

# update ticketing status
comply sync

# trigger creation of scheduled tickets
comply scheduler

# build latest
comply build

# publish static site from output/ directory
upload.sh output/

my-company's People

Contributors

Watchers

my-company's Issues

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Onboard New User

Resolve this ticket by executing the following steps:

Append HR add request e-mail to this ticket
Proactively validate role assignment with manager (see HR request e-mail)
Add user to default group for the specified role
Provision any manually-provisioned applications by role
- Append manual provisioning confirmation to this ticket
Proactively confirm with new user that they can access all provisioned systems

Procedure-ID: onboard

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Collect Workstation Details

Resolve this ticket by executing the following steps:

Send the communications below
For any email replies, attach content to this ticket
Validate responses are received from each

To: Desktop support
Subject: Annual workstation inventory

Please attach the current workstation inventory to the following ticket: [REPLACE WITH URL TO THIS TICKET]

The workstation inventory shall include the following fields:
    * Serial number
    * Custodian
    * Full disk encryption status
    * Malware protection status

To: Outsourced Call Center IT
Subject: Annual workstation inventory

As part of our ongoing compliance efforts and per our services agreement, we require a current inventory of workstations in use in the service of our account.

Please respond to this message with the current inventory.

The workstation inventory shall include the following fields:
    * Serial number
    * Custodian
    * Full disk encryption status
    * Malware protection status

Procedure-ID: workstation

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Onboard New User

Resolve this ticket by executing the following steps:

Append HR add request e-mail to this ticket
Proactively validate role assignment with manager (see HR request e-mail)
Add user to default group for the specified role
Provision any manually-provisioned applications by role
- Append manual provisioning confirmation to this ticket
Proactively confirm with new user that they can access all provisioned systems

Procedure-ID: onboard

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Onboard New User

Resolve this ticket by executing the following steps:

Append HR add request e-mail to this ticket
Proactively validate role assignment with manager (see HR request e-mail)
Add user to default group for the specified role
Provision any manually-provisioned applications by role
- Append manual provisioning confirmation to this ticket
Proactively confirm with new user that they can access all provisioned systems

Procedure-ID: onboard

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Onboard New User

Resolve this ticket by executing the following steps:

Append HR add request e-mail to this ticket
Proactively validate role assignment with manager (see HR request e-mail)
Add user to default group for the specified role
Provision any manually-provisioned applications by role
- Append manual provisioning confirmation to this ticket
Proactively confirm with new user that they can access all provisioned systems

Procedure-ID: onboard

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Onboard New User

Resolve this ticket by executing the following steps:

Append HR add request e-mail to this ticket
Proactively validate role assignment with manager (see HR request e-mail)
Add user to default group for the specified role
Provision any manually-provisioned applications by role
- Append manual provisioning confirmation to this ticket
Proactively confirm with new user that they can access all provisioned systems

Procedure-ID: onboard

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Apply OS patches

OS Patch Procedure

Resolve this ticket by executing the following steps:

Pull the latest scripts from the Ops repository
Execute ENV=staging patch-all.sh
Inspect output
- Errors? Investigate and resolve
Execute ENV=production patch-all.sh
Attach log output to this ticket

Procedure-ID: patch

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.