Re: laws/regulations to comply with

["Raw, Randy" <rawr () MORE NET>]

New "guidance" put out by the feds regarding the interaction of FERPA and
HIPAA that may be helpful for you.

http://www.hhs.gov/ocr/hipaa/HIPAAFERPAjointguide.pdf

Randy Raw, CISSP
MOREnet Manager, Network Security
3212 LeMone Industrial Blvd
Columbia, MO 65201
573.882.0749
573.884.7699 fax
http://www.more.net/security

Security is Everyone's Business!


> -----Original Message-----
> From: The EDUCAUSE Security Constituent Group Listserv
> [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Youngquist, Jason R.
> Sent: Thursday, December 04, 2008 9:34 AM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: [SECURITY] laws/regulations to comply with
>
> We are working on writing more formalized policies for the institution.
> What
> I'm looking for is a comprehensive set of law/regulations that an
> institution
> such as a college might need to comply with.  For example, HIPPA, PCI, Red
> Flag, FERPA, GLBA, CALEA, state & federal laws, etc.  Is there any
> definitive
> list somewhere or does anyone have any additional suggestions?
>
>
> Thanks.
> Jason Youngquist
> Information Technology Security Engineer
> Technology Services
> Columbia College
> 1001 Rogers Street, Columbia, MO  65216
> (573) 875-7334
> jryoungquist () ccis edu
> http://www.ccis.edu

Attachment: smime.p7s
Description: