Regulatory Compliance: Insufficient Protection for Today's Sensitive Data and the Need for a Risk Management Plan
Date of Award
5-27-2010
Document Type
Undergraduate Capstone Project
Degree Name
Master of Applied Science
Organizational Unit
University College, Security Management
Disciplines
Security Management
First Advisor
Jon Coombes
Keywords
Assessment, Compliance, HIPAA, Information, Management, Risk, Security
Abstract
Regulatory requirements focused on enhancing information security within both the private and public sectors are on the rise. The increase in attention towards compliance with these requirements may serve to promote a false sense of security, as a good risk management plan is the crucial component to protecting against information security threats. Logically, additional security should equal less data theft; however, breaches of sensitive data continue to be a growing problem. This growth may point to a poor understanding of how to conduct proper risk management in conjunction with regulatory compliance. This project will show the need for identifying gaps between compliance and risk management and will provide a risk management guide that can be used to do so.
Publication Statement
Copyright is held by the author. Permanently suppressed.
Recommended Citation
Martin, Steven, "Regulatory Compliance: Insufficient Protection for Today's Sensitive Data and the Need for a Risk Management Plan" (2010). University College: Security Management Capstones. 9.
https://digitalcommons.du.edu/ucol_smgt/9