CSIA 413 UMGC Technological Advancements in Cyberspace Essay – Description
Review the Red Clay Renovations company profile for background information before responding to this discussion question.
The Red Clay CEO tasked the company’s IT Governance Board with developing a set of policies to address IT security requirements (including mandates for protecting privacy) arising from the following “rule” or “standard”:
(a) PCI-DSS (credit card and transaction information)
(b) the HIPAA Security Rule (health related information)
(c) the “Red Flags” Rule (consumer credit information: identity theft prevention).
Choose one of the three sources of regulatory requirements listed above. Write a three-paragraph briefing statement that summarizes the regulatory requirements as they apply to the company’s collection, processing, management, and storage of personal information about Red Clay’s clients. Your briefing statement should identify the specific types of personal information covered by the “rule” or “standard.” Include a compelling argument for why the company needs to adopt guidance policies that will ensure compliance with laws and regulations related to protecting personal information.
LINKS
PCI DSS Quick Reference Guide
HIPAA Security Rule
Fighting Identity Theft with the Red Flags Rule: A How-to Guide for Business
Identity Theft Red Flags Rule (SEC, 2013)
How Cybersecurity Affects Legal Ethics Compliance
Risk Management: NIST FISMA Project
Security 101 for Covered Entities (HIPAA Compliance) (Dept. of Health & Human Services, 2007)
The Impact of Sarbanes-Oxley on American Businesses
GLBA Compliance Tips
The post CSIA 413 UMGC Technological Advancements in Cyberspace Essay first appeared on .