An easy place to start with IT compliance or management projects is to pick something that's easy to measure.
Here are 5 things to start with.