Do you by chance know how I can tell which legislations or Acts my organization is subject to? Example (Intellectual Property Rights ,Protection of Organizational Records ,Data Protection and Privacy of Personal Information , Prevention of Misuse of Information Processing Facilities, Regulation of Cryptographic Controls)?
The legislations that your organization is subject to, depends of the country where your organization is based. Anyway, there are common laws in all countries related to information security (at least in Europe), for example laws related with the protection of personal data, intellectual property, electronic signature, etc. To know more information about the laws regulation in each country, please see this Laws and regulations on information security and business continuity : https://advisera.com/27001academy/knowledgebase/laws-regulations-information-security-business-continuity/