From the course: CompTIA Security+ (SY0-701) Cert Prep: 5 Security Program Management and Oversight
Join today to access over 22,800 courses taught by industry experts or purchase this course individually.
Legal and compliance risks
From the course: CompTIA Security+ (SY0-701) Cert Prep: 5 Security Program Management and Oversight
Legal and compliance risks
- [Educator] Whenever we work with sensitive information, we encounter laws and regulations that governs the ways that we store, process, and transmit that data. One of the first things that we need to figure out when working with sensitive information is what specific laws and regulations apply to us. Now, while that might sound straightforward at first, the question of which jurisdictions have the authority to regulate data is really very complicated, and compliance risks can impact an organization's risk posture. Let's look at a simple example. Imagine that we have a company with all of their operations located in the state of California. It's clear in this case that California state law applies to them, and so does federal law written at the national level in the United States. But what if they have a customer located in New York? Does New York law now apply as well? And for using a cloud provider located in Texas,…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.