Assessment Description
The purpose of this assignment is to utilize regulatory compliance measures and security controls to address risk.
completed a FMEA to analyze the risks associated with implementing the selected technology. Building on that is the need to implement security controls to address identified risks. For this assignment, select a key risk you identified that could directly impact customers or an essential part of business operations (e.g., protection of person-identifiable information to prevent customer identify theft).
Using the identified risk as the basis for your assignment, complete the following requirements.
Part 1
Write a 500-word summary that addresses the following:
Explain the regulatory compliance and security controls that should be adhered to in order to address the risk.
Explain why adherence to regulatory compliance measures and security controls is essential from the customer perspective and the business perspective. Provide specific examples to illustrate your ideas.
Part 2
Create a data flow diagram to illustrate how systems will interact with the customer and how the data are passed through the system(s), including how the data will reside in the system of record. Explain the data flow diagram in regard to the key controls in place to address protection of personal identifiable information (PPII).