Sarbanes-Oxley Act (SOX): Federal legislation that establishes requirements for financial risk reporting and corporate governance standards for public companies
Dodd-Frank Act: Wall Street Reform and Consumer Protection Act that regulates financial institutions and their risk management practices
FISMA: Federal Information Security Management Act that defines framework for protecting government information and operations
OSHA Regulations: Occupational Safety and Health Administration standards for workplace safety risks and hazard prevention
HIPAA: Healthcare Insurance Portability and Accountability Act that governs healthcare data privacy and security risks
GLBA: Gramm-Leach-Bliley Act that requires financial institutions to explain their information-sharing practices and protect sensitive data
FERPA: Family Educational Rights and Privacy Act that protects the privacy of student education records
PCI DSS: Payment Card Industry Data Security Standard for organizations that handle credit card information
ISO 31000: International standard providing principles and guidelines for effective risk management
COSO Framework: Enterprise Risk Management Framework providing comprehensive guidance for internal control and risk management
NIST Framework: National Institute of Standards and Technology Risk Management Framework for information systems and organizations
GDPR Compliance: European Union's General Data Protection Regulation requirements if handling EU resident data
CCPA: California Consumer Privacy Act that enhances privacy rights and consumer protection for California residents
EPA Regulations: Environmental Protection Agency requirements for environmental risk management and compliance
FLSA: Fair Labor Standards Act setting standards for employment-related risks and compliance
State-Specific Laws: Various state-level requirements for data privacy, business continuity, insurance, and employment regulations
