Law, ethics and security compliance management Course

2 hours, 54 minutes

Syllabus

Documenting and managing compliance exceptions: Obtaining and reporting authorized approval of compliance risk waivers

Video - 00:06:00

If necessary, gain management support for waivers to compliance and the risk they impose.
Documenting and managing compliance exceptions: Identifying and documenting compensating controls and workarounds

Video - 00:05:00

If necessary, identify and document any workarounds and/or compensating controls.
Working with auditors and regulators to support both internal and external audits: Validating the responses and implemented mitigation/remediation actions

Video - 00:02:00

Work with management to validate and implement the responses.
Working with auditors and regulators to support both internal and external audits: Formulating a response to the audit findings

Video - 00:04:00

Determine any necessary response to the audit findings.
Working with auditors and regulators to support both internal and external audits: Evaluating and validating the audit findings

Video - 00:03:00

Review and evaluate any audit findings.
Working with auditors and regulators to support both internal and external audits: Coordinating the audit activities

Video - 00:06:00

Based on the audit schedule, coordinate all necessary audit activities.
Working with auditors and regulators to support both internal and external audits: Planning the audit schedule

Video - 00:06:00

Develop a schedule to work with the internal and/or external auditors.
Working with auditors and regulators to support both internal and external audits: Planning for coordination

Video - 00:06:00

Develop a plan to work with the internal and/or external auditors.
Validating compliance to laws, regulations and industry best practices: Measuring compliance, the definition and monitoring of compliance metrics

Video - 00:14:00

Develop metrics to measure compliance with the framework.
Validating compliance to laws, regulations and industry best practices: Implement the compliance framework

Video - 00:14:00

For the framework selected, work to implement it.
Validating compliance to laws, regulations and industry best practices: Evaluate and select a compliance framework

Video - 00:06:00

Determine if a compliance framework is necessary, and if so, evaluate and select one.
Validating compliance to laws, regulations and industry best practices: Inform and advise the organization's senior management

Video - 00:13:00

Advise senior management as to the status of compliance.
ISC2's Code of Ethics as it relates to information security management Issues

Video - 00:09:00

Implement ISC2's Code of Ethics within the organization.

Identify the impact to information security that laws and regulations have: Identifying and advising on any related noncompliance risks

Video - 00:08:00

Determine the noncompliance risks with the laws previously identified.
Identify the impact to information security that laws and regulations have: Identifying any applicable industry regulations

Video - 00:09:00

Determine if the organization is subject to industry regulations and if so, which ones.
Identify the impact to information security that laws and regulations have: Identifying the applicable intellectual property laws

Video - 00:17:00

Determine the organization's intellectual property and any applicable laws.
Identify the impact to information security that laws and regulations have: Identifying the applicable export laws

Video - 00:07:00

Determine if the organization exports goods and/or services and if so, any applicable export laws.
Identify the impact to information security that laws and regulations have: Identifying the operational legal jurisdictions

Video - 00:07:00

Determine the jurisdiction in which the organization operates.
Identify the impact to information security that laws and regulations have: Identify the applicable privacy laws

Video - 00:12:00

Determine the applicable privacy laws for the organization.
Introduction to law, ethics and security compliance management

Video - 00:05:00

This is an introduction to Domain 6 of ISSMP.
ISSMP Domain 6 Practice Exam

Assessment - 30 questions

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo

Award-winning training you can trust