Choose an organization with which you are familiar, and assume the role of director of IT. Which compliance law do you think you would be most concerned with in your organization? Discuss how the need to adhere to this law would affect your IT security policies.