In this scenario, you work for a Fortune 500 international insurance company in their security

5-6 pager APA

In this scenario, you work for a Fortune 500 international insurance company in their security compliance department with clients throughout the US and Europe. The company provides services for health care, accepts credit cards from clients, and is listed on the New York Stock Exchange. It also has some US Federal Government contracts.

For this assignment, you need to determine, list and summarize the laws, regulations, and standards to which your company must be compliant. Of those laws, regulations, and standards, pick at least one to discuss in depth. Explain the regulation, why your organization needs to be compliant, what the regulation contains, and how you'd audit for compliance.

This same company is initiating a project to use Office365 for email, Office applications (Word, Excel, PowerPoint, etc.), and cloud file storage. Joyne, the Project Manager has tasked you with providing a report of the risks associated with using this service. In your report, you need to explain any

you need to explain any threats or vulnerabilities and how these could generate a loss scenario for the organization. She is also looking for metrics to measure the security of this service. Lastly, what policies or procedures would you put into place around the use of this service, given the compliance requirements from step 1?