Sarbanes-Oxley Act (SOX): Federal legislation focusing on corporate governance and financial risk management requirements. Essential for internal controls and financial reporting risk assessment.
Dodd-Frank Wall Street Reform: Federal legislation providing comprehensive financial regulation, including risk management requirements for financial institutions and corporate entities.
FISMA: Federal Information Security Management Act establishing requirements for federal agencies and their partners regarding information security risk management.
HIPAA: Health Insurance Portability and Accountability Act governing healthcare data privacy and security risk management requirements.
OSHA: Occupational Safety and Health Act establishing workplace safety standards and risk management requirements for occupational hazards.
Basel III: International banking standards implemented in the US, providing requirements for banking sector risk management and capital adequacy.
State Data Breach Laws: Various state-specific legislation governing data breach notification requirements and risk management protocols for data security.
ISO 31000: International standard providing principles and guidelines for effective risk management practices.
COSO Framework: Enterprise Risk Management framework providing integrated approach to evaluating and improving risk management programs.
NIST Risk Framework: National Institute of Standards and Technology guidelines for risk assessment and management, particularly focused on information security.
SEC Guidelines: Securities and Exchange Commission requirements for risk disclosure and management for public companies.
Federal Reserve Guidelines: Specific risk management requirements and guidelines for financial institutions under Federal Reserve supervision.
EPA Regulations: Environmental Protection Agency requirements for environmental risk assessment and management.
PCI DSS: Payment Card Industry Data Security Standard providing risk management requirements for organizations handling credit card data.
