Compliance

Download Free Potential Failure Modes and Effects Analysis (FMEA) Templates

1. Select the process FMEA team
2. Develop a process map and identify all process steps
3. List all the key process outputs to satisfy internal and external customer requirements
4. For each process step, list key process inputs
5. For the process define matrix relating product outputs to process variables
6. Rank the inputs
7. For each process input, list ways that it can vary (causes) and identify associated failure modes and effects

Download United States Federal Code on Computer Crimes Cyber Security Enhancement Act 2002 Description.

Enforces life sentences for hackers who recklessly endanger the lives of others, specifically transportation systems, power companies, or other public services or utilities.
18 U.S.C. § 1029 Fraud and Related Activity in Connection with Access Devices
18 U.S.C. § 1030 Fraud and Related Activity in Connection with Computers
18 U.S.C. § 1362 Communication Lines, Stations, or Systems
18 U.S.C. § 2510 Wire and Electronic Communications Interception and Interception of Oral Communications
18 U.S.C. § 2701 Stored Wire and Electronic Communications and Transactional Records Access

6.11.3 Crimes and Criminal Procedure Section 1029 Subsection (a)

California’s landmark SB1386 was the first data breach law enacted. A data breach law covers the requirements companies have to notify consumers whose personal information has been compromised (such as a copy being stolen or lost, and presumably in the hands of someone not entitled to have that information). A significant majority of U.S. states have followed suit, although each has its own requirements. The four basic tenets are as follows:

1. Notification guidelines: when a company is required to inform people whose data privacy has been breached

2. Penalty for failure to disclose: whether

3. Private right of action: if/when individuals have the right to file a lawsuit

For HIPAA Compliance, especially for Physical Safeguards area which stated that "Access to equipment containing health information should be carefully controlled and monitored". It is very useful to use Adeona, the first Open Source system for tracking the location of your lost or stolen laptop that does not rely on a proprietary, central service.

This means that you can install Adeona on your laptop and go — there's no need to rely on a single third party. What's more, Adeona addresses a critical privacy goal different from existing

Download Free Outsourcing and Audit Procedures Checklist

- Are customer connections (extranets) audited on a regular basis?
- Does a formal architecture exist for connecting customers (extranet) to your network?
- Does a formal policy exist to spell out when, why, and how extranet connections will be permitted?
- Is management approval required before bringing an extranet connection online?
- Is a formal security audit required before bringing an extranet connection online?