Choose one of the following regulatory frameworks and discuss in detail its impacts on a particular enterprise or organization, ideally based on your own personal or professional experience.
Focus your discussion on how compliance with the regulation drove (or could drive) the design of network modification or the deployment of a security control. Alternately, you can discuss a case of regulatory noncompliance and its consequences. Consider the following:
- Family Educational Rights and Privacy Act (FERPA).
- Federal Information Security Management Act (FISMA)
- Gramm–Leach–Bliley Act (GLBA).
- Health Insurance Portability and Accountability Act (HIPAA).
- Payment Card Industry Data Security Standard (PCI DSS).
- Sarbanes–Oxley Act (SOX).
- Another of your choosing.
