Study for CDSPP (Certified Data Security & Privacy Professional)
Here is some information to guide you what to study and prepare for the exam.
- Data Security, Privacy and Compliance - Study about data security and how to protect PII/SPI. Knowledge and understanding of relevant legal and regulatory requirements such as Sarbanes-Oxley Act (SOX) and Payment Card Industry. Data encryption at rest and in transmission. SSL/TLS, https, SFTP, SSH, data handling, privacy, etc.
- PCI - Understand basics of PCI and what is required to protect PAN number according to the standards. Tokenization, data masking, data encryption, How to protect CDE(cardholder data environment).
- HIPAA - Understand HIPAA Compliance and security rule. Some basics on sharing and protecting PHI.
- GDPR - Understand basics of General Data Protection Regulation, data protection of personal information. Right to data access, obtaining consent, right to be forgotten, breach notifications, etc.
- GLBA - Understand basics of Gramm-Leach-Bliley Act, what's the purpose and what are the key regulations.
- Safe Harbor - EU Privacy Shield - Understand basics of Safe Harbor and Privacy Shield.
Copyright © 2021 TekCert