List Of Fees For Compliance Violations

egrizzlyegrizzly B.Sc (Info. Systems), CISSP, CCNA, CCNP, Security+Member Posts: 413 ■■■■□□□□□□
Hi y'all,

For the compliance folks with the knowledge is there a place where you can view or download a master list of the fines/fees issued for non-compliance of the various compliance requirements (e.g. PCI, HIPAA).  Something like below:

Fine for PCI Non-Compliance:  $5,000 to $100,000 (max $500,000)
Fine for HIPAA Violation: $100 to $50,000 (max $1.5M)
Fine for XYZ Violation: $xxx (max $xx)
Fine for XYZ Violation: $xxx (max $xx)
B.Sc (Info. Systems), CISSP, CCNA, CCNP, Security+

Comments

  • scascscasc Member Posts: 375 ■■■■■□□□□□
    Nothing particularly officially managed as these pertain to different bodies. Just by doing a google search I found this https://cyberinsureone.com/laws-penalties/

    Check it out. 
    MSc, BSc (Hons), AWS CSA, C-CISO, CISSP, CCSP, CCSK, CISM, CISA, CRISC, GSTRT, GSNA, GDSA, GCSA, GCCC, CEH, ECSA, CHFI, TOGAF, CISMP
  • egrizzlyegrizzly B.Sc (Info. Systems), CISSP, CCNA, CCNP, Security+ Member Posts: 413 ■■■■□□□□□□
    Thanks scasc.  It seems from my research through various google searches as well that PCI-DSS seems to be the most frequently needed by organizations while HIPAA takes second.  HIPAA compliance seems to be heavily enforced too.
    B.Sc (Info. Systems), CISSP, CCNA, CCNP, Security+
  • scascscasc Member Posts: 375 ■■■■■□□□□□
    No worries - Talking of PCI, just finished off a review on controls for SAQ A. PCI will be needed if you handle/store payment data. All compliance initiatives are heavily enforced if you fall into the legislative requirement - be it GDPR, PCI, SOX, HIPAA etc. 
    MSc, BSc (Hons), AWS CSA, C-CISO, CISSP, CCSP, CCSK, CISM, CISA, CRISC, GSTRT, GSNA, GDSA, GCSA, GCCC, CEH, ECSA, CHFI, TOGAF, CISMP
Sign In or Register to comment.