Given the following list of U.S. compliance laws,
Compliance laws:
- Children's Internet Protection Act (CIPA)
- Family Educational Rights and Privacy Act (FERPA)
- Federal Information Systems Management Act (FISMA)
- Gramm-Leach-Bliley Act (GLBA)
- Health Insurance Portability and Accountability Act (HIPAA)
- Sarbanes-Oxley (SOX) Act
Please prepare a paper which addresses the following:
- Choose two (2) laws directly related to your market, industry, or government "sector." If there are not two laws listed here which directly relate to your market, industry, or government "sector," find two, and identify them in your paper.
- Using your organization, discuss the specific steps necessary, which you, in the role of IT information security officer, would have to take in order to demonstrate compliance with the specifics of the two laws that you have selected.
- Being honest, on a scale of one (1) fully and woefully non-compliant to five (5) able to pass a compliance audit with a grade of A+, rate your organization's compliancy status, related to the two laws that you have selected. Provide an analysis/reason for your rating.
Please be sure to provide your response via the proper thread under the discussion question link for this chapter. Please do not submit your reply via email, use only the thread provided by Canvas to submit your responses.