Many of the laws that impact information security professionals are designed to protect the privacy of individuals and protect them against both identity theft and the unwanted disclosure of personal information. In this video, learn about HIPAA, HITECH, FERPA, GLBA, COPPA, the Privacy Act of 1974, and the European Union GDPR.
- [Instructor] Many of the laws that impact…information security professionals are designed…to protect the privacy of individuals…and protect individuals against…both identity theft and the unwanted disclosure…of personal information.…In the United States, we have a patchwork of laws…that affect different industries depending…upon the nature of their business…and the types of sensitive information…that they handle.…Probably the most well known of these laws is…the Health Insurance Portability…and Accountability Act or HIPAA.…
Past in 1996, HIPAA places strict privacy…and security regulations on healthcare providers,…health insurers, and health information clearinghouses.…These three groups collectively known…as HIPAA-covered entities must ensure…the privacy and security of protected health information…or PHI that they handle.…HIPAA was updated in 2009 with the passage…of the Health Information Technology…for Economic and Clinical Health or HITECH Act.…
The Family Educational Rights and Privacy Act or FERPA…regulates how educational institutions may handle…
To join one of Mike's free study groups for access to bonus tips and practice questions, visit certmike.com.
- The security triad: confidentiality, integrity, and availability
- Security principles
- Resource security
- Data security
- Security controls
- Assessing security controls
- Security policy
- Physical security
Skill Level Intermediate
Q: This course was updated on 05/18/2018. What changed?
A: New videos were added that cover software licensing. In addition, the following topics were updated: integrity, leveraging industry standards, data encryption, security control selection and implementation, audits and assessments, security policy framework, security policy training and procedures, and ethics.
Insights from a Cybersecurity Professionalwith Mike Chapple32m 15s Intermediate
1. The Security Triad
2. Security Principles
3. Resource Security
4. Data Security
5. Data Security Controls
6. Security Controls
Control frameworks3m 55s
7. Assessing Security Controls
8. Security Policy
9. Awareness and Training
10. Physical Security
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.