1. Choose an organization you are familiar with, and choose one of the legal and regulatory requirements that was mentioned in this unit. Briefly explain the requirement. Why is it of specific importance to the organization you chose? What are the risks associated with non-compliance?
2. Name and define an information systems control. Provide an example including how it might be used in an organization. Please be specific.