From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Privacy assessments
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 7 Compliance and Assessment
Privacy assessments
- [Instructor] The U.S. federal government uses a series of formal privacy assessments for any systems involved in the handling of personally identifiable information. Anyone working with the federal government will be required to follow these processes. Security professionals in private industry may not be required to use these processes but may still learn from them and adapt them to their needs. Privacy Threshold Analysis, or PTAs, are used to determine whether a system contains or processes personally identifiable information in a manner that requires privacy control. When a system reaches the threshold specified in the PTA, organizations must complete a Privacy Impact Assessment, or PIA, that dives into deeper detail to ensure that the system meets privacy requirements. The Privacy Threshold Assessment requires that agencies answer a series of questions about the types of information that the system will handle,…