Back to course list
- Level: Beginner
- Duration: 02h 37m 46s
- Release date: 2021-01-25
- Author: Christopher Rees
- Provider: Pluralsight
Governance, Risk, and Compliance for CompTIA Security+
Description
Content
Proper governance, compliance, and risk assessment are an important part of any organization’s overall success. This course will teach you how to implement proper controls, assess risk, and limit your company’s exposure.
- Course Overview02m
- Course Overview02m
- Comparing and Contrasting Various Types of Controls07m
- Module Overview01m
- Goals of the Module01m
- Threat Types01m
- Types of Access Control (Managerial, Operational, and Physical)01m
- Deterrent00m
- Preventive01m
- Detective01m
- Corrective / Recovery and Compensating01m
- Module Review00m
- Applicable Regulations, Standards, or Frameworks that Impact a Security Organization32m
- Module Overview01m
- Privacy and Compliance Challenges05m
- GDPR and Key Terminology02m
- GDPR Key Terms and Data Processing Principles02m
- Six Legal Grounds for Processing Personal Data01m
- GDPR Compliance and Penalties01m
- Compliance Frameworks03m
- NIST and the Cyber-security Framework (CSF)01m
- PCI-DSS01m
- Enterprise Security Framework (ESF)01m
- NIST SP 800-53 and ISO 2700103m
- Cloud Security Alliance (CSA)01m
- SSAE 18, SOC 1, 2, and 303m
- Benchmarks and Secure Configuration Guides02m
- Systems Hardening03m
- Vendor and Control Diversity02m
- Module Review00m
- Implementing Policies within Organizational Security45m
- Module Overview01m
- Importance of Policies in Reducing Risk00m
- Job Rotation02m
- Mandatory Vacations01m
- Separation of Duties01m
- Least Privilege01m
- Clean Desk Policies01m
- Background Checks, NDAs, and Role-based Awareness Training02m
- Use Cases for Monitoring02m
- Things Typically Monitored02m
- Balancing What's Reasonable01m
- New Tools Are Constantly Developed01m
- Monitoring Social Media01m
- Employee Protections01m
- Onboarding / Offboarding01m
- Culture and Creating a Culture of Security02m
- Setting the Stage01m
- Awareness Training01m
- Skills Training02m
- Funding and Executive Buy-in01m
- Continuous Improvement01m
- Wired Brain Coffee's Approach to Training02m
- Technology Diversity01m
- Vendor Diversity01m
- Service-level Agreement (SLA)01m
- Memorandum of Understanding (MOU) and Master Services Agreement (MSA)02m
- Business Partner Agreement (BPA)01m
- EOL / EOS02m
- Data Retention01m
- User Account01m
- Shared, Generic, Guest, and Service Accounts02m
- Privileged Accounts01m
- Change Management02m
- Asset Management02m
- Review the Risk Management Process and Concepts58m
- Module Overview01m
- Risk Types03m
- Managing Risk01m
- Risk Management Defined01m
- Risk Management Concepts03m
- Strategic Options02m
- Risk Register, Risk Matrix, and Heat Map01m
- Risk Control Self-assessment (RCSA)03m
- Risk Awareness (Inherent, Residual, Control, and Risk Appetite)01m
- Regulatory Examples01m
- Gramm-Leach-Bliley Act (GLBA)01m
- HIPAA01m
- HITECH Act02m
- Sarbanes-Oxley Act (SOX)03m
- GDPR01m
- Qualitative and Quantitative Analysis03m
- Risk Calculation01m
- Likelihood of Threat01m
- Impact of Threat01m
- Loss Calculation Terms (ALE, SLE, and ARO)03m
- Threat Assessment (Disaster)02m
- Additional Risk Calculation Terms (MTBF, MTTF, and MTTR)01m
- Business Impact Analysis: Key Terminology05m
- Mission Essential Functions02m
- Identification of Critical Systems02m
- Single Point of Failure (SPOF)02m
- Order of Restoration02m
- Phased Approach01m
- Identifying Most Critical Systems First02m
- Risk Assessment01m
- Continuity of Operations01m
- IT Contingency Planning03m
- Privacy and Sensitive Data Concepts and Considerations22m
- Module Overview01m
- Company Obligations to Protect Security02m
- Potential Damages from Mishandled Data01m
- Incident Notification and Escalation02m
- Notifying Outside Agencies01m
- Data Classification03m
- Privacy-enhancing Technologies, Data Masking, and Tokenization02m
- Anonymization and Pseudo-anonymization01m
- Data Owner01m
- Data Controller and Processor00m
- Data Steward / Custodian01m
- Privacy Officer01m
- Information Lifecycle02m
- Privacy Impact Assessment02m
- Terms of Agreement and Privacy Notice02m
Random courses
- Publishing Progressive Web Apps
- WCF Web Service(SOAP+Rest), ASP.NET Webforms and SQL Server
- The Gardening Calendar, what to do each month in your garden
- Basic Neuroscience of Autism
- Google Sheets Essential Training
- Master Salt Analysis/Qualitative Analysis
- Formal Language and Automata Theory - Essential Concepts
- 2022 CIA Part2 Practice Test
- Marketing Communications
- Laravel | Create a Car Dealership Website
Latest courses
- Ember.js: The Documentary
- GraphQL: The Documentary
- AWS Certified Solutions Architect - Professional (SAP-C01) Cert Prep: 1 Design for Organizational Complexity
- CCSP Cert Prep: 4 Cloud Application Security
- What Business Leaders Need to Know about Web3 (+ Metaverse)
- Building No-Code Apps with AppSheet: Implementation
- Automation Anywhere: The Big Picture
- Protective Technology with Apache Kafka
- Coding for Visual Learners: Learning JavaScript from Scratch
- StringBuilder Internals