Chapter 6: Laws and Regulations Flashcards

1
Q

provides a framework for ensuring the effectiveness of information security controls in government

A

FISMA (The Federal Information Security Modernization Act)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

legislation intended to protect government information, operations, and assets from any natural or manmade threat

A

FISMA (The Federal Information Security Modernization Act)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

requires each federal agency to develop, document, and implement an information security program to protect its info and info systems

A

Federal Information Security Modernization Act)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

improves efficiency and effectiveness of the health care system

A

Health Insurance Portability and Accountability Act (HIPAA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

certain provisions within HIPAA require privacy protections for individually identifiable health information

A

Protected Health Information (PHI)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

mandate safeguards to protect patient privacy

A

HIPAA Privacy Rule

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

sets limits on the use of disclosure of patient information without authorization and grants individuals rights over their own health records

A

HIPAA Privacy Rule

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

protects the privacy of students and their parents

A

The Family Educational Rights Privacy Act (FERPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

requires all schools that receive funds from programs administered by the U.S. Department of Education to comply with the standards regarding the disclosure and maintenance of educational information, personally identifiable information, and directory information

A

The Family Educational Rights Privacy Act (FERPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

grants certain rights to students and parents regarding the student’s own records

A

The Family Educational Rights and Privacy Act (FERPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

regulated the financial practice and governance of corporations

A

Sarbanes-Oxley Act (SOX)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

designed to protect investors and the general public by establishing requirements regarding reporting and disclosure practices

A

Sarbanes-Oxley Act (SOX)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

mandates standard in regards to areas such as corporate board responsibility, auditor independence, fraud accountability, internal controls assessment, and enhanced financial disclosures

A

Sarbanes-Oxley Act (SOX)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

established the Public Company Accounting Oversight Board (PCAOB)

A

Sarbanes-Oxley Act (SOX)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

oversees public accounting firms and independently ensures compliance with SOX for auditing practices

A

Public Company Accounting Oversight Board (PCAOB)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

protects the customers of financial institutions, essentially any company offering financial products or services, financial or investment advice, or insurance.

A

The Gramm-Leach-Bliley (GLBA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

requires financial institutions to safeguard a consumer’s “nonpublic personal information or NPI”

A

The Gramm-Leach-Bliley Act (GLBA) Privacy Rule

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

mandates the disclosure of an institution’s information collection and information sharing practices, and establishes requirements for providing privacy notices and opt-out to consumers

A

The Gramm-Leach-Bliley Act (GLBA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

money laundering

A

Bank Secrecy Act (BSA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

Telecommunications assistance for law enforcement

A

Communications Assistance for Law Enforcement Act of 1994(CALEA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Rules for spam

A

Controlling the Assault of Non-Solicited Pornography and Marketing (CAN SPAM)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

computer fraud and abuse

A

Computer Fraud and Abuse Act of 1986(CFAA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

protecting children from harmful content

A

Children’s Internet Protection Act of 2001 (CIPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Private data of children

A

Children’s Online Privacy Protection act of 1998 (COPPA)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

DMV records

A

Driver’s Privacy Protection Act of 1994 (DPPA)

26
Q

Government documents (E FOIA)

A

Electronic Freedom of Information Act of 1996

27
Q

Credit Information

A

Equal Credit opportunity act (ECOA)

28
Q

electronic communications (wiretaps)

A

Electronic Communications Privacy Act of 1986 (ECPA)

29
Q

Transfer of funds

A

Electronic Funds Transfer Act ( EFTA)

30
Q

Electronic Banking

A

Fair and Accurate Credit Transactions Act (FACTA)

31
Q

Credit Records (CCRA)

A

Consumer Credit Reporting Reform Act of 1996

32
Q

Debt Collection

A

Fair Debt Collection Practices Act (FDCPA)

33
Q

Energy Regulation

A

Federal Energy Regulatory Commission (FERC)

34
Q

Education Records `

A

family education rights and privacy act of 1974 (FERPA)

35
Q

securities

A

Financial Industries Regulatory Authority (FINRA)

36
Q

government information security

A

federal information security management act (FISMA)

37
Q

unfair trade practices

A

Federal Trade Commission Act (FTCA)

38
Q

consumer financial information

A

gramm-leach-bliley financial services modernization act of 1999 (GLBA)

39
Q

patient information

A

health insurance portability act (HIPAA)

40
Q

health information technology

A

health information technology for economic and clinical health act(HITECH)

41
Q

import and export of defense items

A

international traffic in arms regulation(ITAR)

42
Q

economic and trade sanctions

A

office of foreign assets control (OFAC)

43
Q

payment cards

A

payment application data security standards PCI DSS)

44
Q

privacy of journalist

A

privacy protection act of 1978(PPA)

45
Q

privacy of financial institutions

A

right to financial privacy act of of 1978 (RFPA)

46
Q

breach notifications

A

California Senate bill 1386 (SB 1386)

47
Q

accuracy of corporate financial information

A

sarbanes-oxley act (SOX)

48
Q

telephone solicitation

A

Telephone Consumer Protection Act of 1991 (TCPA)

49
Q

anti terrorism

A

uniting and strengthening america by providing appropriate tools required to intercept and obstruct terrorism act of 2001 (USA PATRIOT ACT)

50
Q

automated matching of privacy act records

A

computer matching and privacy protection act (CMPPA)

51
Q

identity theft

A

federal identity theft and assumption deterrence act (FITAD)

52
Q

telemarketing

A

do no call registry

53
Q

government accounting and administrative controls

A

Federal Managers Financial Integrity Act (FMFIA)

54
Q

requirement for US voting systems

A

Help America Vote act of 2002 (HAVA)

55
Q

department of homeland security data

A

homeland security act of 2002

56
Q

securities customer information

A

NASD rule 3110

57
Q

data for securities transactions

A

SEC rule 17a-4

58
Q

electronic signatures

A

title 21 code of federal regulations

59
Q

a matter that is very specific to the industry in which a given company or organization is operating and how it is structured (often more far reaching than imagined)

A

regulatory compliance

60
Q

comes packaged with cyclical audits and assessments to ensure that everything is being carried out according to specification

A

regulatory compliance

61
Q

regulations that are not mandated by law but can have severe impacts upon our ability to conduct business

A

industry compliance