Compliance is manifold. There is Sarbanes-Oxley Compliance, OECD Principles Compliance, IFRS Compliance, IT Compliance and so on. GRC tries to leverage synergies of the various kinds of compliance. GRC Resource for now concentrates on compliance of financial processes.
|Tarantino, Anthony (2006): Manager’s Guide to Compliance. New Jersey: John Wiley & Sons.|
|Tarantino’s book is an up-to-date description of relevant laws along with best practices for securing compliance. The author’s perspective is clearly that of a manager from the United States. The critical sections of Sarbanes-Oxley are laid out in detail, while OECD principles and IFRS for instance are treated in only one short chapter each. The mixture of theory and hands-on advice (over 100 pages about best practices for 9 topics such as COSO, COBIT, segregation of duties and compliance project management) makes it a good book for starters in research and, of course, the target group of the book – compliance managers.
[Buy from Amazon.com]