Given the following list of U.S. compliance laws, Compliance laws: Children’s Internet Protection Act (CIPA) Family Educational Rights and Privacy Act (FERPA) Federal Information Systems Management Act (FISMA) Gramm-Leach-Bliley Act (GLBA) Health Insurance Portability and Accountability Act (HIPAA) Sarbanes-Oxley (SOX) Act
1. Choose two (2) laws directly related to your market, industry, or government “sector.” If there are not two laws listed here which directly relate to your market, industry, or government “sector,” find two, and identify them.
2. Using your organization, discuss the specific steps necessary, which you, in the role of IT information security officer, would have to take in order to demonstrate compliance with the specifics of the two laws that you have selected.
3. Being honest, on a scale of one (1) fully and woefully non-compliant to five (5) able to pass a compliance audit with a grade of A+, rate your organization’s compliancy status, related to the two laws that you have selected. Provide an analysis/reason for your rating.
**** For the above assignment and questions focus on government sector.