Dis- 15

Maintaining compliance with laws and regulations in a complex IT environment is difficult. The vast array of regulations a company must comply with is constantly increasing and changing.  Each state has its own set of laws and regulations that indicate who is covered by the law & what event triggers consumer notifications.  Laws which require notifying consumers of data breaches are a good example of conflicting rules.  

• Discuss the importance of collaboration and policy compliance across business areas
• How can penetration testing be used to help ensure compliance? Explain
• Define the vulnerability window and information security gap.  Explain

- Length of 1 and half page

- Must have two quality APA references