List of Top Regulations/Frameworks in Cybersecurity

United States

1. Gramm-Leach-Bliley Act (GLBA): Ensuring financial institutions protect the security and confidentiality of customer data.

2. California Consumer Privacy Act (CCPA): Providing consumers with rights regarding the collection and use of their personal information.

3. Colorado Privacy Act (CPA): Similar to CCPA, focusing on data privacy and protection.

4. Computer Fraud and Abuse Act (CFAA): Addresses hacking and unauthorized access to computers.

5. Health Insurance Portability and Accountability Act (HIPAA): Protects patient health information.

6. Federal Information Security Modernization Act (FISMA): Requires government agencies to develop methods to protect their information systems.

7. Payment Card Industry Data Security Standard (PCI DSS): Sets standards for companies processing, storing, or transmitting cardholder data.

8. New York Department of Financial Services (NYDFS) Cybersecurity Regulation: Focuses on cybersecurity for financial services companies.

European Union (EU)

1. NIS2 Directive: Strengthening cybersecurity resilience and harmonizing regulations across the EU, particularly around critical infrastructure.

2. GDPR (General Data Protection Regulation): Protecting personal data and privacy for individuals within the EU.

Asia

1. Personal Information Protection Act (PIPA): South Korea’s data protection law ensuring the safe handling of personal information.

2. Cybersecurity Law: China’s comprehensive law focusing on cybersecurity and data protection.

International

1. ISO/IEC 27001: An international standard for managing information security.

2. NIST Cybersecurity Framework: A voluntary framework in the US that provides guidelines on how to manage and reduce cybersecurity risk.