Information Assurance Compliance (2020)

From CyberEdWiki
Revision as of 22:07, 21 November 2019 by GeralynUH (talk | contribs) (Text replacement - "To complete this KU, students should be able to:" to "After completing the KU, students will be able to:")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

The intent of the IA Compliance Knowledge Unit is to provide students with an understanding of the rules, regulations and issues related to compliance with applicable laws and regulations.


After completing the KU, students will be able to:

  1. Compare and contrast voluntary and mandatory compliance requirements.
  2. Plan and conduct audits to determine compliance with policies, laws, regulations, and other standards.


  1. Compliance Requirements
    • Baseline
  2. Compliance Monitoring and Tracking
  3. Compliance Reporting
    1. Compliance levels
  4. Compliance Training
  5. Relationship between compliance and audit
  6. Audit Types
    1. Internal
    2. External
  7. Audit Purposes
    1. Compliance to specified requirements, specifications, policy, standards or laws
    2. Regulatory compliance
    3. Assessment of internal controls
  8. Audit process
    1. Audit Charter
    2. Audit Baseline
    3. Audit Activities
    4. Audit Reporting,
      1. Results(Findings)
      2. Recommendations
    5. Response
      1. Mitigation Strategy


NICE Framework Categories[edit]

CSEC 2017 Categories[edit]

Specialization Areas[edit]

See also[edit]

Related Knowledge Units

Further reading[edit]

Suggested textbooks[edit]

Suggested academic readings[edit]

Sample knowledge test[edit]

Sample skills test[edit]

Sample abilities test[edit]

Additional notes or materials[edit]


Reference ID[edit]