Information Privacy Essentials Learning Path

The Information Privacy Essentials for Cybersecurity Professionals learning path introduces students to fundamental privacy concepts, frameworks and laws.

24+ hours

Quick facts

About this learning path

  • courses

    100% online

  • Duration

    24+ hours

  • Assessment


About Information Privacy Essentials

The Information Privacy Essentials for Cybersecurity Professionals learning path provides students with insights into the role of information privacy within private sector and public sector organizations. This learning path provides students with a foundational knowledge of important information privacy concepts and topics, and introduces students to several privacy-related frameworks, guidance, and standards used globally.



Information Privacy Essentials Skill Assessment

Assessment - 72 questions

Introduction to Privacy and Information Privacy

Course - 00:58:00

This course introduces students to the data protection and information privacy. Students will learn about data protection and information privacy from a global perspective.
Personal Information Definitions and Global Fair Information Practices (FIPs)

Course - 01:14:00

Students will review the purpose of global FIPs. They will review the first US Code of Privacy Practices, the OECD’s seminal Guiding Principles and an overview of personal information definitions and global FIPs frameworks.
Global Data Protection and Information Privacy Laws

Course - 05:15:00

This course introduces students to several global data protection and information privacy laws. They will learn about data protection requirements in the EU GDPR, the UK Data Protection Act, LGDP, PIPEDA and more. Students will also review the concept of data protection principles, children’s online protection and special processing activities requirements.
International Organization for Standardization (ISO) and Privacy

Course - 02:03:00

In this course, students will learn about ISO’s international guidance. These will include looks at ISO/IEC 27701:2019, ISO/IEC 29101:2018 and ISO/IEC 29151:2017, including exploring online privacy notices, administrative penalties and consent requirements.
The US Federal Government's Executive Branch and Information Privacy

Course - 01:34:00

Students will learn about the role of information privacy within the US federal government's executive branch. They will learn about the Privacy Act of 1974, the Computer Matching and Privacy Protection Act of 1988, the E-Government Act of 2002 and the relevant concepts and topics.
US Office of Management and Budget (OMB) and Information Privacy

Course - 02:21:00

In this course, students will learn about the US Office of Management and Budget's (OMB) role in providing privacy-related guidance to the Executive Branch. They will review OMB Circular A-130, OMB Memorandum 03-22 and more.
National Institute of Standards and Technology (NIST) and Privacy

Course - 05:39:00

Students will learn about several NIST special publications (SP) and an internal report (IR) providing guidance to the Executive Branch regarding privacy. They will receive an introduction to privacy engineering, the three privacy engineering objectives (predictability, manageability and disassociability) and the importance of privacy risk management.
US Healthcare Privacy-Related Laws and Privacy Compliance Guidance

Course - 03:01:00

Students will learn about several US healthcare privacy-related laws and rules. They will review HIPAA, the HIPAA Privacy Rule, and the HIPAA Security Rule. They will review HITECH and the Breach Notification Rule, GINA's privacy protection requirements and more.
US Finance Privacy-Related Laws and Associated Rules

Course - 02:06:00

Students will learn about several US finance privacy-related laws and associated rules. They will review the FCRA's consumer privacy protection requirements, FACTA's consumer privacy protection requirements and GLBA's consumer financial privacy protection requirements and more. Students will review concepts and topics germane to the FCRA like credit reports, credit reporting agencies, consumer rights and more.
US Education Privacy-Related Laws, Children Online Privacy Protection Laws, and Associated Rules

Course - 01:49:00

Students will learn about several US education privacy-related laws, children’s online privacy protection laws and associated rules. They will review FERPA's educational privacy requirements, PPRA's amendments to FERPA, the NCLBA's amendment of PPRA and much more.
US State Data Privacy and Data Security Laws

Course - 04:09:00

Students will learn about several US state-level data privacy and data security laws. They will review the CCPA and the proposed CPRA, Vermont's Data Broker Regulation, the Illinois Biometric Information Privacy Act and more. Students will learn about CCPA and CPRA business requirements and learn the definition of "brokered personal information."
US State Data Breach Notification Laws

Course - 01:43:00

Students will learn about several US state data breach notification laws. They will review California's data breach notification law, which was the first of its kind in the US. They’ll explore other laws in Texas, New York, Massachusetts, Puerto Rico and the District of Columbia. Students will also review individual definitions of breaches, notification requirements, safe harbor requirements and more.

Meet the author

Christopher Stevens

Chris Stevens has spent over thirty-five years as a data protection professional, a homeland security intelligence professional, an information privacy professional, a strategic intelligence manager, and as a Senior National Intelligence Service Senior Executive. Chris possesses all seven of the International Association of Privacy Professionals’ (IAPP) certifications. He is an IAPP Fellow of Information Privacy. Chris is a member of the IAPP Privacy Faculty, and he served for two years as an IAPP Baltimore, MD Knowledge Net Chapter Co-Chairperson. He is an American Health Information Management Association “Certified in Healthcare Privacy and Security” professional. He is a Healthcare Compliance Association “Certified Healthcare Privacy Compliance” professional.

Chris is an ISACA “Certified Information Security Manager,” “Certified in Risk and Information Security Controls,” and a “Certified Data Privacy Solutions Engineer” professional. Chris has completed the Loyola University-Chicago School of Law’s “Graduate Certificate in Privacy Law.” Chris is a certified OneTrust Privacy Professional. Chris possesses several baccalaureate and graduate degrees in several disciplines. He is currently completing the Capella University Doctor of Information Technology with a concentration in Cybersecurity and Information Assurance.

He has assisted several private sector and public sector organizations in better managing their privacy and risk management programs. He has developed information privacy courses and learning paths for Cybrary and the Infosec Institute, respectively. He currently teaches IAPP privacy certification examination courses. He also teaches for Drexel University’s College of Computing and Informatics as a part-time adjunct professor. He currently works for King and Spalding LLP as its Privacy and Cybrary Risk Analyst. He lives in Laurel, MD with his fiancé, her 11-year-old son, and his two rambunctious Scottish terriers: Thor and Maggie. 

The details

Learning path insights

How to claim CPEs

Should you complete this learning path, you’ll be able to download a certificate of completion. Use this to claim your CPEs or CPUs.

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • All-Source Analyst
  • Mission Assessment Specialist
  • Exploitation Analyst

No software. No set up. Unlimited access.

Skip the server racks and spin up a realistic environment with one click. Infosec Skills cyber ranges require no additional software, hardware or server space so your team can spend less time configuring environments and more time learning. Unlimited cyber range access is included in every Infosec Skills subscription so your team can skill up however they learn best.

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo