Each question should be at least seventy-five words.
1. Which compliance regulation is designed to provide for the protection of health data? Explain how this law affects IT personnel.
2. Explain the relevance of having an acceptable use policy (AUP). What type of policies should be on an AUP? Why is it important to implement these types of policies?
3. Explain the importance of managerial support in IT security. What role does the IT manager play in setting policy and ensuring employee awareness of the policy?
4. What can IT security personnel do to keep employees informed of IT security policies? How can management help in this regard? Please provide specific examples.