Episode description
Discussion around cyber security governance and compliance. What they are, the professions that perform these roles and what they do and how they differ. I go over key regulations including SOX, HIPAA, GDPR and others explaining what they cover and why it matters to cyber security professionals.
cybergreybeard@gmail.com
Sarbanes Oxley: https://www.soxlaw.com/
PCI-DSS: https://www.pcisecuritystandards.org/
HIPAA: https://www.hhs.gov/hipaa/index.html
GDPR: https://gdpr-info.eu/
CCPA: https://oag.ca.gov/privacy/ccpa
GDPR Enforcement and Fines: https://www.enforcementtracker.com/
HIPAA Fines: https://compliancy-group.com/hipaa-fines-directory-year/
Tennessee Diagnostic Medical Imaging Service: https://www.hhs.gov/hipaa/for-professionals/compliance-enforcement/agreements/tmi/index.html
Lifespan Health: https://www.hhs.gov/about/news/2020/07/27/lifespan-pays-1040000-ocr-settle-unencrypted-stolen-laptop-breach.html