Module 10: Policy & Governance
This module covers policies and governance issues. Topics covered include federal Critical Infrastructure policies and legislation, information sharing of threats among agencies, public/private partnerships, and standards and regulations, as well as compliance. Issues relevant to specific sectors is discussed, such as intellectual property, and the roles of HIPAA, Sarbanes-Oxley, Gramm-Leach-Bliley, and PCI (DSS) are reviewed.
- Identify information-sharing strategies and initiatives as established by the Department of Homeland Security (DHS).
- Describe threat intelligence information sharing among public and private partners, including Information Sharing and Analysis Centers (ISACs).
- Explain the roles that DHS’s National Cybersecurity and Communications Integration Center (NCCIC) and National Infrastructure Coordinating Center (NICC) play in infrastructure protection.
Describe issues relevant to specific critical infrastructure sectors, such as HIPAA and other regulations and laws.