As a cybersecurity professional, you will be responsible for complying with the regulatory requirements of each jurisdiction that your organization has ties with. Legal standards often vary widely, posing challenges for organizations that operate in multiple jurisdictions. In this discussion, you will examine an example of local regulations in one state in the United States.
The Breach Notification Law Interactive Map from the law firm BakerHostetler provides the regulatory compliance and due-care requirements for each state in terms of data protection and regulatory response, including the definition of personal information, requirements for risk-of-harm analysis, and requirements to notify the state government in case of a breach. This discussion should help you recognize some of the similarities and differences between security requirements in different jurisdictions.
To complete this discussion:
- Select a state to review. Ideally, you will select a state that has not yet been discussed in any earlier posts to the discussion.
- Summarize the standards in the various categories that apply to your selected state.