Earning Criteria

• Course 1: Information Privacy Law. This course surveys the privacy law landscape with a primary focus on United States federal privacy laws from a commercial perspective. The course will introduce students to federal regulations in multiple sectors, as well as an introduction to international data protection and localization laws in Canada, EMEA, LATAM, and APAC regions.
• Course 2: Information Governance and Security Risk Management. This course will introduce participants to the tenets of information security and information privacy risk management, including information risk governance, metrics and management reporting; and common frameworks for identifying, treating, and managing risk. This course will describe how to develop a security program, draft policies, and conduct internal, external, and vendor risk assessments.
• Course 3: Information Technology Systems and Security Controls. This course will cover technology controls through a wide variety of foundational topics of information security; cybersecurity; application, data and operating system security; securing virtual environments; cloud and mobile security; network security; the Internet of Things; and staying safe online.
• Course 4: Incident Management and Response. This practical course guides participants through the steps necessary to develop an incident response plan to enable a company to minimize loss and speed recovery after a data breach or network intrusion. Specific topics include establishing proactive relationships before an attack occurs, tailoring a response plan to evolving and emerging threats, and understanding the protections afforded by attorney-client privilege.
• Course 5: Liability and Enforcement Authorities. This course examines the potential liability and reporting requirements of a company following a data breach, including class actions, contracts litigation, shareholder derivative lawsuits, and government imposed investigations and sanctions. Course materials are drawn from recent high-profile cases.