Journal of Digital Forensics, Security and Law (Dec 2007)

The Design and Implementation of an Automated Security Compliance Toolkit: A Pedagogical Exercise

  • Guillermo Francia III,
  • Brian Estes,
  • Rahjima Francia,
  • Vu Nguyen,
  • Alex Scroggins

Journal volume & issue
Vol. 2, no. 4
pp. 59 – 76

Abstract

Read online

The demand, through government regulations, for the preservation of the security, integrity, and privacy of corporate and customer information is increasing at an unprecedented pace. Government and private entities struggle to comply with these regulations through various means—both automated and manual controls. This paper presents an automated security compliance toolkit that is designed and developed using mostly open source tools to demonstrate that 1) meeting regulatory compliance does not need to be a very expensive proposition and 2) an undertaking of this magnitude could be served as a pedagogical exercise for students in the areas of collaboration, project management, software engineering, information assurance, and regulatory compliance.