Compliance with information security regulations is supposed to be, as the most recent iteration of the PCI DSS (Payment Card Industry Data Security Standard) puts it, business as usual But many organizations feel like they are drowning in such a sea of regulations that constant compliance with them all doesnt give them much time to run their usual business. The number of compliance frameworks, most aimed at specific industries but sometimes overlapping, amount to an alphabet soup that could make an IT managers eyes glaze over.”]
Source: https://www.csoonline.com/article/2899612/compliance-fatigue-sets-in.html