Professional Education Course
Information Security: Legal Requirements Concerning Privacy and Data Protection
|Course Title: Information Security: Legal Requirements Concerning Privacy and Data Protection|
|Program ID: COMP 2120P||Subject: Cyber Security|
Important Course Information
Establishing and following sound information security practices is good policy and, in many cases, is required by law. Learn what federal and state laws apply to information security, as well as foreign laws that apply to information security. Explore privacy law - common and statutory; intellectual property law - intentional and unintentional disclosure can result in loss of rights; negligence - liability can result from failure to exercise reasonable care to protect data that results in identity theft; and contractual obligations.
What Is Covered
- Review how laws are developed, interpreted, and enforced
- Understand what laws and courts govern particular situations
- Characterize what duties individuals and entities have to avoid injury and damage to others
- View state and federal privacy laws, including Gramm-Leach-Bliley and HIPAA
- Review what the dangers are from hacking and identity theft
- Learn how to protect intellectual property
- Relate common contractual obligations
Participants each receive a notebook of course slides and supporting notes.
It is required that you take Information Security: Protecting the Expanding Enterprise before taking this course.
- Overview of legal principles
- Overview of need to restrict access and disclosure
- State privacy laws
- Prohibitions on hackers
- Employers, employees and email
- Protection of intellectual property and contractualobligations
- Federal privacy laws (overview)
- Federal privacy laws and insurance coverage
- Foreign privacy laws
Steve Haase, chief executive officer of INSURtrust, has more than 25 years of experience in risk management and insurance. In 1997, he launched the first insurance product focused on "breach of computer securty" exposures for companies doing business over the Internet. Haase's areas of expertise are risk management and insurance protection for technology, telecommunications, Internet, and media companies. He eared his B.A. and M.S. in risk management and insurance from Georgia State University. He also holds CPCU and AR designations.
Gail Horlick, senior legal analyst for the Centers for Disease Control and Prevention Office of Scientific Regulatory Services, advises public health practitioners at the federal, state, and local levels on the impact of legislation on public health practice and facilitates the development of confidentiality policies to protect data. She received her J.D. from Georgia State University College of Law and her master's in social work from the University of Maryland School of Social Work and Community Planning.
Tom McCurdy, executive vice president of INSURtrust, has more than 30 years experience as an insurance professional. Clients have included Turner Broadcasting, MARTA, and National Data Corp. In fall 1997, McCurdy assisted with the development of the first insurance policy covering network security liability. He graduated from Georgia Institute of Technology with a B.S. in industrial management.
Stan Shapiro, executive vice president and associate general counsel with Primerica Life Insurance Co., provides counseling regarding privacy law issues for Primerica including issues relating to compliance with the Gram-Leach-Bliley Act and the Fair Credit Reporting Act. He received a B.A. from the University of North Carolina-Chapel Hill and his J.D. from the University of Georgia School of Law.