- Apply industry leading data security and privacy compliance frameworks to realistic examples.
- Conduct qualitative and quantitative cyber risk assessments and transfer cyber risks.
- Prepare for and comply with legal requirements relating to data breaches and other legal process for digital information.
This course describes practical frameworks for data privacy and security risk management and compliance. We examine the CIA (Confidentiality, Integrity, and Availability) Triad, the NIST Cybersecurity and Privacy Frameworks, and essential principles of Privacy by Design (PbD), along with qualitative and quantitative methods of cyber risk assessment. We apply these frameworks and methods to realistic cybersecurity and privacy scenarios. We further explore methods of transferring cyber risk, including third-party contract terms and cyber insurance. Finally, we discuss legal requirements relating to data breach response and other forms of legal process concerning digital information.