Compliance laws and challenges responses

profileislandbuilt

Provide (2) 150 words response with a minimum of 2 APA references at the discussions below. Response provided should further discuss the subject or provide more insight.


DISCUSSION 1:

It is necessary to have U.S. compliance laws to ensure that data is handled properly and there are standards that must be upheld to some degree. For instance, financial institutions must follow policies written in SOX (Johnson, 2016). When handling financial information there is private information that such as names, addresses, and credit card information that is used in e-commerce. There is also the fact that institutions such as hospitals must follow HIPPA to ensure that individuals information remain protected. Compliance can also be making sure that proper credit is given if companies use open source components. As stated in article from Managed Healthcare Executive “penalties can be imposed” if there are violations (Daniels, 2010). Open source components have been growing in use due to cost savings and community support, which means that companies have another concern with staying in compliance.

Depending on the policies and regulations there need to be controls and procedures in place to ensure that these standards are being met. Controls can be technical, administrative, or logical to make sure the company is complying. The most common issues that come from information lost is on the user domain. Educating users and training employees is necessary to ensure everyone is aware of policies and standards that are in place. Also, if there are changes that are made to the existing policies or if new ones are added there should be emails signed agreements stating everyone understands the changes. A policy is only useful if it is being followed. Having technical controls in place that force users to abide by policies in place.



DISCUSSION 2:

Compliance is an act that you comply or adhere a law, rule or regulation too. The U.S. compliance laws or laws that are designed to protect the people and consumer rights as well as environment and organization and economy. This helps to ensure that everyone abide by standards, polices, rules, and regulations and laws, that pertain to them and their business. Not following these rules could lead to things such as fines and imprisonment.

Dealing with large organizations could have many polices to monitor as well to enforce. When the regulation is properly upheld it will help ensure that all are understood and upheld. This allows risk managers to determine the risk and able to determine the risk that arise and be able to manage the network administrators to monitor the compliance and for the auditors to confirm or verify compliance.

Training will always be necessary when implementing change of any kind. When implementing the new polices there will require some type of training or interaction in to make sure that everyone understands the new policy and different rules. This type of training allows everyone that does not understand the change to ask questions. This allows them to clear any grey area the policy may have presented. This will prove any type of beneficial to help them stay in compliance with the new policy. When you attempt to post policy around the office or maybe information board you may have some people that pay attention, but many will ignore. Even those that read it you do not know if they understand it. Having briefs also ensure that they know the consequences of not following the rules and understand that they are to be upheld.

    • 5 years ago
    • 10
    Answer(1)

    Purchase the answer to view it

    blurred-text
    • attachment
      Compliancelawsandchallengesresponses.docx