This course examines the policy, legal, regulatory, framework, and standards documents that provide requirements and guidance for cybersecurity, and the resulting compliance and audit requirements. The course covers risk-based techniques for assessing compliance and integrating compliance initiatives into cybersecurity strategy, planning, and projects.