Description
The twelve courses in this suite provide you with the critical information that you need to know, and the guidelines you must follow, to be compliant with common security data security regulations.
Produced by the SANS Institute
Courses*
*Only available as a suite. Durations are approximate.
- Data Security and Data Destruction (4 minutes)
Safe data-handling practices are critical. As the foundation of most of the compliance videos, this module describes ways to securely store or process sensitive information, restrictions on sharing information, ways to manage data retention, why it is important to follow data policies, and how to destroy data securely. - Help Desk (3 minutes)
The help desk is often a targeted group within an organization. These people are trained to communicate with and assist a variety of strangers over the phone. As such, additional steps must be taken to both educate and protect them. - Payment Card Industry Data Security Standard (PCI DSS) (3 minutes)
If your organization stores, transmits or processes any cardholder data, it is required to follow PCI DSS. This module can be used to comply with updated PCI DSS version 3.2 standards. This module is built on and recommends people watch the Data Security module first. - Health Information Portability and Accountability Act (HIPAA) (3 minutes)
This module explains what Protected Healthcare Information (PHI) is and covers the steps required to store, process and use it. This module is built on and recommends people watch the Data Security module first. - Personally Identifiable Information (PII) (3 minutes)
This module defines PII and the extra steps employees must take to protect it and other types of confidential information. This module is built on and recommends people watch the Data Security module first - Federal Tax Information (3 minutes)
Any organization working with federal tax information is regulated by federal law and required to take specific steps to protect that data. This module defines federal tax information and explains the steps that must be taken to protect data in order to keep your organization compliant. - Foreign Corrupt Practices Act (FCPA) (3 minutes)
The FCPA applies to any organization that does business in the U.S. or has stocks, bonds or other securities traded in U.S. markets. This module explains what the FCPA is, why it’s important and the rules and processes that employees are expected to follow in order to remain compliant. - EU General Data Protection Regulation (GDPR) (4 minutes)
The European Union’s standards for General Data Protection have been updated, and this module explains the expanded requirements for data collection, handling, protection and disposal. - Gramm-Leach-Bliley Act (GLBA) (2 minutes)
This module explains what GLBA and non-public personal information (NPI) are and the steps employees must take to protect this data and ensure compliancy, using both educational and financial examples. This module is built on and recommends people watch the Data Security module first. - Red Flags Rule (4 minutes)
The Red Flags Rule is a federal regulation that requires organizations to implement a prevention program designed to detect the warning signs of identity theft. This module explains what these red flags are, what to look for and the actions that need to be taken when a flag has been identified. - Privacy (2 minutes)
Privacy laws impact how information can be collected, accessed, disclosed and maintained. This module covers the importance of privacy and the steps people should take to protect it. This module provides a basic overview of concepts, setting the stage for additional requirements or standards that might apply specifically to your organization. - California Consumer Privacy Act (CCPA) (4 minutes)
The CCPA aims to protect the privacy and security of personal information of California residents. This module describes CCPA in detail and outlines the general principles and procedures that affected organizations must follow in order to stay in compliance.
