Standards and Regulations Require
Standards and regulations prescribing and/or mandating security configuration management (cyber hardening) are rapidly evolving internationally and in the US, at both the federal and state levels including with stiffer penalties. For instance, many US states are adopting private causes of action for breach.