The purpose of this assignment is to develop a security programaligned with regulatory compliance and security controlframeworks.
Select a company for the focus of your assignment. Using thefollowing, map the standard controls to the regulatory compliancethat would be appropriate for the organization:
- The "Security Controls Mapping Template."
- Regulatory compliance information, such as HIPAA, PCI, SOX,GLBA, etc.
- Security control frameworks, such as NIST, CIS, COBIT, COSO,ITIL, etc.
On the template, map the regulatory rules (one per line) andsecurity controls (as many per line as necessary). List anenforcement or measurement policy, procedure(s), or process toaudit the rule/controls applied.
Write a 500-word summary that defines the regulatory complianceand security controls and includes the following information:
- Overview of the company, goods, or services provided; theindustry; and the customer demographics.
- Identification of compliance regulations to which the companymust adhere (e.g., medical-based companies should apply HIPAAregulations) and an explanation of why adherence is essential.
- Justification for the selection of the control framework chosento effectively implement the identified regulations.
- Paste a copy of the completed content of the "Security ControlsMapping Template" table into the Word document.
Submit the Word document and the completed "Security ControlsMapping Template."
Prepare this assignment according to the guidelines found in theAPA Style Guide, located in the Student Success Center. An abstractis not required.
