Information Systems

 

Part 1

 

Write a 500-word summary that addresses the following:

 

Explain the regulatory compliance and security controls that should be adhered to in order to address the risk.

Explain why adherence to regulatory compliance measures and security controls is essential from the customer perspective and the business perspective. Provide specific examples to illustrate your ideas.

Part 2

 

Create a data flow diagram to illustrate how systems will interact with the customer and how the data are passed through the system(s), including how the data will reside in the system of record. Explain the data flow diagram in regard to the key controls in place to address protection of personal identifiable information (PPII).

 

Part 3

 

Complete the “Security Controls Mapping Template” using the FMEA from the Topic 4 assignment. Reference appropriate regulatory compliance information (i.e., HIPAA, PCI, SOX) and security control frameworks (i.e., NIST, CIS, COBIT) when completing the template.

This question has been answered.

Get Answer