There is quite an assortment of statutory and regulatory requirements within the United States. However, there is no single cybersecurity law that governs all aspects of cybersecurity and privacy.
US Federal Laws
US State Laws
Payment Card Industry Data Security Standard (PCI DSS) Version 3.1
HIPAA FACTA GLBA SOX
CA SB1386 MA 200CMR17.00 OR 646.200 & Others
UK Data Protection Act & Others
When Addressing Compliance With US Federal Legal Requirements, Remember That NIST 800-53 is king!
We were the industry's first source for a customized, on-demand Cybersecurity & Data Protection Program (CDPP) that is specifically tailored for small and medium sized business. Our NIST 800-53 rev Cybersecurity & Data Protection Program (CDPP) follows industry-recognized best practices (e.g. NIST, ISO and CIS) and we reference applicable laws, requirements, standards, and best practices that businesses need to follow to be considered compliant.
We take the hassle of the guesswork away from US Federal Laws so you can focus on what you do best - growing your business.
As information security professionals, we know the policies you need to have in place to meet the requirements with NIST 800-53 rev 5. The likelihood that your local “IT guy” knows these compliance requirements is unlikely since information security is a very specific skill set.
We follow proven, internationally recognized standards for what security policies should consist of. Many competitor sites unfortunately offer solutions that will leave you exposed and unprepared - when keeping your company in business and protected is the priority, there is no room for amateur solutions. The NIST-based Cybersecurity & Data Protection Program (CDPP) stands out from the competition in its coverage, depth, and price. Additionally, the turnaround for a NIST 800-53 Cybersecurity & Data Protection Program (CDPP) is generally 1-2 business days.
Digital Security Program (DSP) - Enterprise-Class, Hybrid Framework For Cybersecurity & Privacy
The DSP is an enterprise-class solution for cybersecurity & privacy documentation consisting of thirty-three (33) domains that defines a modern,...