Compliance Convergence Initiative (CCI)

The Compliance Convergence Initiative is a community-led, community-built project to help managers like you plan, standardize, and harmonize compliance-related IT initiatives across the enterprise. All resources are free and open to all contributors.

The CCI is not another framework. Rather, it’s a way to evaluate the strengths and weaknesses of many frameworks and how they relate to each other. It’s not a publication, but rather a living repository of expertise and experience from managers who deal with compliance issues every day. And it’s not a solution, but rather a collaboration to build a functional foundation for fast, efficient, and effective compliance, governance, and risk management.

Contribute, Research, and Review

CONTROL MAPPING PROJECT

  • Build a standardized cross-reference of control statements for multiple regulations and best-practice frameworks
  • Compare and contrast frameworks and standards
  • Highlight strengths and weaknesses of various frameworks and standards, related to managerial needs.

Participation is free and contributions are rewarded.

Learn more and get involved

COMPLIANCE POLICY WIKI

Phase One project goals:

  • Build and refine a free, robust library of IT policy templates, based on public sources and community contributions
  • Associate policies with control statements identified in the Control Mapping Project.

Anyone is welcome to contribute to the Compliance Policy Wiki, and all contributions are monitored by the community and ITCi editors.

Go to the Compliance Policy Wiki

GRCpedia WIKI

The GRCpedia Wiki is a collection of terms and concepts selected and defined by the GRC community, ITCi editors, and public sources. With your help, the GRCpedia can become a comprehensive reference of governance, risk management, and compliance terminology that serves as a foundation for other CCI projects, as well as its contributors’ efforts.

Go to the GRCpedia Wiki

Ask the Auditor

What do auditors want? What do they look for in an IT audit? Submit your audit-related questions to our field expert. We'll make every effort to fully address your question in a future Ask the Auditor column.

Click here to ask the auditor

Related White Papers

UCP Transition FAQ

If you have purchased or frequently refer to IT Impact Matrices associated with the Unified Compliance Project click here.

Sponsor the CCI

Sponsors help ITCi to provide CCI resources free-of-charge to the community. Sponsor benefits include high visibility and other tangible rewards. For more information, contact Lesley Schwartz at lschwartz@itcinstitute.com or 425.277.9196