Publication Date

Spring 2023

Document Type


Degree Name

Master of Science


Information Technology

First Advisor

Dr. Mohammed Salam

Second Advisor

Prof. Richard Manprisio

Third Advisor

Dr. Dae Wook Kim


The rapid advancement of technology has led to an increase in the volume and sensitivity of personal and professional data stored and shared online. As a result, there is a growing need for effective cyber security regulations to protect against data breaches and ensure the confidentiality and integrity of sensitive information. The Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI DSS), and General Data Protection Regulation (GDPR) are three such regulations that have been implemented to address this need. This thesis aims to evaluate the effectiveness of these regulations in protecting sensitive information and preventing data breaches. A comprehensive literature review of existing research on the topic is conducted, and case studies of the implementation and enforcement of these regulations are analyzed. The study finds that while these regulations have been successful in raising awareness and establishing standards for cyber security, there is still room for improvement in their implementation and enforcement. Additionally, the study identifies the challenges and limitations in evaluating the effectiveness of cyber security regulations. Finally, recommendations for future research are provided in this area. The study concludes that while these regulations are important steps towards improving cyber security, more research is needed to fully understand their effectiveness and potential for improvement.