In the context of IT security, compliance means ensuring that your organization meets the standards for data privacy and security that apply to your specific industry. Easily enough said, but what does all that mean and more important how do you get started on such a daunting task? Then once you have implemented a solid structure that adheres to your organization and industry how do you keep up with it? What do you do if your organization is breached and\or a violation by an employee? How do you manage the information you are retrieving from the policies, alerts, etc. that have been implemented. These are all great questions and exactly what we will be diving into in this workshop. We will start with some terminology and end the day with some ideas on maintaining what you have built and ensuring that your organizations governance policies correspond with the configuration that has been implemented in your environment.