Compliance Matrix

Cancelled Posted Jan 26, 2007 Paid on delivery
Cancelled Paid on delivery

I run a security shop for several companies. I'm looking to provide them with a fairly large compliance matrix that will include ITIL, ISO-17799, FISMA, NIST, DITSCAP, DOD. As well as external programs such as HIPAA, GLBAct, and the infamous SOX. I'm looking for a matrix or something similar that can be used to compare the different baseline standards. Hyperlinks to the data/section in another document is fine. (Obviously you'll have to be able to save the documents locally and include those with the final product) I know very little regarding the C&A process...so I am relying on you to include your knowledge, suggestions, best guess, and even your opinion if you think it needs to be included. Thanks, Ryan

## Deliverables

1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.

2) Deliverables must be in ready-to-run condition, as follows (depending on the nature of the deliverables):

a) For web sites or other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.

b) For all others including desktop software or software the buyer intends to distribute: A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.

3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).

## Platform

Excel, HTML...whatever the easiest way to display the information is.

PHP

Project ID: #2816504

About the project

Remote project Active Feb 4, 2007