Tuesday, February 9, 2016

Law and Compliance Assignment

Law and Compliance

DESCRIPTION
This project will afford you the opportunity to learn about U.S. Computer laws and compliance regulations that are relevant to computer security.
The Project
First, you will research, write a synopsis of, and submit your work regarding the following laws and regulations in a file titled, “Project 3-Milestone 1 Synopses of Laws and Regulations”:
  • HIPAA / FERPA
  • Computer Security Act
  • Sarbanes – Oxley (SOX)
  • Gramm – Leach – Bliley (GLBA)
  • Privacy (COPPA)
  • Payment Card Industry Data Security Standard (PCI DSS)
  • State, US and international standards / jurisdictions
  • Laws and Authorities
  • US Patriot Act
  • BYOD issues (Bring Your Own Device)
  • Americans with Disabilities Act, Section 508


Some suggested start sites
These sites are representative, not inclusive.


  1. HIPAA – Health Insurance Portability and Accountability Act


  1. FERPA – Family Educational Rights and Privacy Act


  1. Computer Security Act
FISMA – Federal Information Security Management Act
  1. SOX – Sarbanes – Oxley


  1. GLBA – Gramm-Leach-Bliley




  1. COPPA – Children’s Online Privacy Protection Act


  1. PCI DSS – Payment Card Industry Data Security Standard




  1. State, US and international standards / jurisdictions








  1. Laws and Authorities






  1. US Patriot Act


  1. BYOD issues (Bring Your Own Device)




  1. ADA – Americans with Disabilities Act, Section 508


The document you create for this part of the project is one you should save as a valuable tool for reference as you move into employment in the IT field.


Then, you will then answer a set of questions regarding the laws you have researched. The questions are listed below and can also be found on Blackboard in the file: “Project 3-Milestone 2 Questions.” You will document your source(s) for your answers by copying and pasting the web address of your source(s) beneath each answer.


Answer these questions regarding the laws you have researched.
Document the source(s) for your answers by copying and pasting the web address of your source(s) beneath each answer.
  1. Explain why Massachusetts Eye and Ear Infirmary (MEEI), known in the Boston area as the highly respected Mass Eye and Ear, was required pay $1.5 million dollars to the US Department of Health and Human Services in 2012? What law guided this decision?


  1. How did the Supreme Court interpret FERPA in the case of Owasso Independent School District v Falvo?


  1. Does a college or university have to release the name of a student who authors and sends an e-mail complaining about an instructor to the instructor’s supervisor? Explain why, citing a court case and the relevant law governing the ruling.


  1. The Computer Security Act of 1987 was repealed by the Federal Information Security Management Act of 2002 (FISMA). What is the purpose of this new act? What are the nine compliance steps outlined by the National Institute of Standards and Technology (NIST)?


  1. The Sarbanes-Oxley Act (2002), SOX, designed mainly by Senator Paul Sarbanes and Representative Michael Oxley introduced major changes to the regulation of corporate governance and financial practice. How did it impact J.P. Morgan in 2012? Give two examples of how SOX protects whistleblowers.


  1. Gramm – Leach – Bliley Act (GLBA) compliance is mandatory. Financial institutions must have a policy to place to protect an individual’s financial information from possible threats in security and data integrity. Briefly explain the three major components of GBLA that regulate the collection, disclosure and protection of that financial information.


  1. Who does COPPA protect? How does COPPA protect these people?
The act, effective April 21, 2000, applies to the online collection of personal information by


  1. US Patriot Act (Uniting and Strengthening America by Providing Appropriate Tools Required to Intercept and Obstruct Terrorism Act of 2001, Public Law Pub.L. 107–56) was hastily written by Congress in the aftermath of the 9/11 attacks. In 2011, President Obama extended for four years three provisions of the Patriot Act. Briefly explain those three extended provisions.


  1. Explain the advantages and disadvantages of BYOD.


  1. How does Section 508 of the ADA – Americans with Disabilities Act, impact federal agencies?


THE MILESTONES AND DUE DATES

Milestone
Suggestions
Due
1
Write a synopsis of each law/regulation
Filename: “Synopses of Laws and Regulations”
2/16/16
2
Answer questions regarding the laws/regulations
Filename: “Laws and Regulations Questions”
2/16/16


ASSESSMENT: Assignment Rubric

Beginning
20-29
Developing
30-39
Accomplished
40-49
Exemplary
50
Score

 Research
Synopses for
between 4 and 5 laws and regulations completed
Synopses for  between 6 and 7 laws and regulations completed
Synopses for
between 8 and 9 laws and regulations completed
Synopses for all assigned laws and regulations completed accurately.


 Questions
Between 4 and 5 questions answered accurately.
Between 6 and 7 questions answered accurately.
Between 8 and 9 questions answered accurately.
All questions answered accurately


No comments:

Post a Comment