New law on privacy, e-discovery, and data security is creating an urgent need for professionals who can bridge the gap between the legal department and the cybersecurity team. SANS LEG523 provides this unique professional training, including skills in the analysis and use of contracts, policies, and insurance security questionnaires.
This course covers the law of crime, policy, contracts, liability, compliance, cybersecurity, and active defense – all with a focus on electronically stored and transmitted records. It also teaches investigators how to prepare credible, defensible reports, whether for cybercrimes, forensics, incident response, human resource issues, or other investigations.
The Global Information Assurance Certification (GLEG) associated with LEG523 demonstrates to employers that you have absorbed the sophisticated content of this course and are ready to put it to use. This coveted GIAC certification distinguishes any professional – whether a cybersecurity specialist, auditor, lawyer, or forensics expert – from the rest of the pack. It also strengthens the credibility of forensics investigators as witnesses in court and can help a forensics consultant win more business. And the value of the certification will only grow in the years to come as law and security issues become even more interconnected.
The course also provides training and continuing education for many compliance programs under information security and privacy mandates such as GLBA, HIPAA, FISMA, GDPR, and PCI-DSS.
YOU WILL LEARN HOW TO:
- Choose words for better legal results in policies, contracts, and incidents
- Implement processes that yield defensible policies on security, e-records, and investigations
- Reduce risk in a world of vague laws on cybercrime and technology compliance
- Carry out investigations so that they will be judged as ethical and credible
- Persuade authorities that you and your organization responded responsibly to cybersecurity, privacy, and forensic challenges.
- Negotiate business transactions in the ever-changing cyber world
YOU WILL BE ABLE TO:
- Work better with other professionals at your organization who make decisions about the law of data security and investigations
- Exercise better judgment on how to comply with privacy and technology regulations, both in the United States and in other countries
- Evaluate the role and meaning of contracts for technology, including services, software, and outsourcing
- Help your organization better explain its conduct to the public and to legal authorities
- Anticipate cyber law risks before they get out of control
- Implement practical steps to cope with technology law risk
- Better explain to executives what your organization should do to comply with information security and privacy law
- Better evaluate technologies, such as digital archives and signatures, to comply with the law and serve as evidence
- Make better use of electronic contracting techniques to get the best terms and conditions
- Exercise critical thinking to understand the practical implications of technology laws and industry standards (such as the Payment Card Industry Data Security Standard).
