Presentation is loading. Please wait.

Presentation is loading. Please wait.

Personnel Training for Privacy

Published byNorbert Weber Modified over 5 years ago

Similar presentations

Presentation on theme: "Personnel Training for Privacy"— Presentation transcript:

1 Personnel Training for Privacy
Information Privacy & Cybersecurity

2 Definitions of Data Protection
US: Security controls to protect data from being compromised by un-authorized actors (hackers) Europe: Same as US but add a persons rights to privacy

3 Protected PII is defined as an individual’s name in combination with one or more of the following items: social security number or foreign national ID number passport number or visa number driver’s license number personal credit card number bank account number date and place of birth (both together, not one by itself) mother’s maiden name detailed personal financial information (not merely salary history) detailed medical records What is Protected PII?

4 What if I need to access PII
Staff have a need to maintain and process some PII (customer & employee records, financial transactions, credit card numbers etc.), but this should be restricted to only those employees that require access. These employees should be granted special roles and authority to properly access only the appropriate level of PII What if I need to access PII

5 How Do We Help Protect Privacy
Communication Education Training Testing

6 Communication Create, publish and review Data Privacy Policies including: Data Types Document Classifications Retention Policy Responsibilities Technical and Physical Security

7 Education Seek out the appropriate education and certifications for you roles Guide others to the appropriate education and certifications

8 Training Cybersecurity Awareness Campaign
Create Mandatory Training Sessions Create ongoing newsletters, s, posters, videos Cybersecurity Awareness Campaign Training

9 Data Privacy Social Engineer Training

10 Testing Test Phish Vish Shoulder Surf Tail-Gate

11 Where do I go if I have any questions
SANS.org ISACA.org pcisecuritystandards.org

Download ppt "Personnel Training for Privacy"

Similar presentations

ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.

ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.
University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.

University Data Classification Table* Level 5Level 4 Information that would cause severe harm to individuals or the University if disclosed. Level 5 information.
Red Flag Rules: What they are? & What you need to do

Red Flag Rules: What they are? & What you need to do
DOCUMENTATION Missouri Medicaid Audit and Compliance Provider Certification Review Materials.

DOCUMENTATION Missouri Medicaid Audit and Compliance Provider Certification Review Materials.
Springfield Technical Community College Security Awareness Training.

Springfield Technical Community College Security Awareness Training.
FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.

FAIR AND ACCURATE CREDIT TRANSACTIONS ACT (FACTA)- RED FLAG RULES University of Washington Red Flag Rules Protecting Against Identity Fraud.
Identity Theft Someone steals your personal information for his/her own gain It’s a crime!

Identity Theft Someone steals your personal information for his/her own gain It’s a crime!
1.13.1.G Personal Finance. 1.13.1.G  Almost 31% of an individual’s paycheck is deducted  Taxes are the largest expense most individuals will have 

G Personal Finance G  Almost 31% of an individual’s paycheck is deducted  Taxes are the largest expense most individuals will have 
Data Classification & Privacy Inventory Workshop

Data Classification & Privacy Inventory Workshop
UNC Charlotte Purchasing Card Training for Auditor Role Annette Heller.

UNC Charlotte Purchasing Card Training for Auditor Role Annette Heller.
PRIVACY ACT Federal Workers’ Compensation Conference 2014 Department of Labor.

PRIVACY ACT Federal Workers’ Compensation Conference 2014 Department of Labor.
Data Security Overview ORSP Staff AT Desktop Service Team November 18th, 2014.

Data Security Overview ORSP Staff AT Desktop Service Team November 18th, 2014.
What is personally identifiable information (PII)? KDE Employee Training Data Security Video Series 1 of 3 October 2014.

What is personally identifiable information (PII)? KDE Employee Training Data Security Video Series 1 of 3 October 2014.
OCPA NEIGHBORHOOD WATCH PROGRAM THE OHIO CRIME PREVENTION ASSOCIATION IDENTITY THEFT.

OCPA NEIGHBORHOOD WATCH PROGRAM THE OHIO CRIME PREVENTION ASSOCIATION IDENTITY THEFT.
17-2 Financial Services and Electronic Banking. Types of financial services Savings services Financial institutions accept money for safekeeping. A broad.

17-2 Financial Services and Electronic Banking. Types of financial services Savings services Financial institutions accept money for safekeeping. A broad.
Understanding Your Paycheck and Tax Forms

Understanding Your Paycheck and Tax Forms
Teresa Macklin Information Security Officer 27 May, 2009 Campus-wide Information Security Activities.

Teresa Macklin Information Security Officer 27 May, 2009 Campus-wide Information Security Activities.
WHO’S IN YOUR “WALLET” WHO’S IN YOUR “WALLET” YOU BETTER “RECOGNIZE” YOU BETTER “RECOGNIZE” STEPPING $200 $200 $300 $400 $500 $400 $300 $200 $500 $400.

WHO’S IN YOUR “WALLET” WHO’S IN YOUR “WALLET” YOU BETTER “RECOGNIZE” YOU BETTER “RECOGNIZE” STEPPING $200 $200 $300 $400 $500 $400 $300 $200 $500 $400.
Identity Theft.  What is it?  How is it perpetrated?  Can you avoid it?  What if you become a victim?

Identity Theft.  What is it?  How is it perpetrated?  Can you avoid it?  What if you become a victim?
Protecting Personal Information at Fermilab: Advanced Course Irwin Gaines – Lab Privacy Committee Chair.

Protecting Personal Information at Fermilab: Advanced Course Irwin Gaines – Lab Privacy Committee Chair.

Similar presentations

Ads by Google