Commonly held policies, procedures & practices for Cybersecurity can be traced to federal law or industry regulations. For example, the safety and security of medical information is linked to HIPAA1, financial transactions to SOX2 and credit card transactions to PCI DSS3. In each instance, compliance with specific requirements for information security and privacy are provided.
Moreover, many insurance companies require companies to adopt safeguards and technologies specifically designed to protection data and systems.
 Health Insurance Portability and Accountability Act
 Sarbanes-Oxley Act
 Payment Card Industry - Data Security Standard