Hey, guys, My name is Peter Simple own, and this is the network Security course.
This is going to be module to less and three. And in this lesson, we're going to discuss ethics and really just some general data and data protection and privacy laws and regulations that you should be aware off.
Prerequisites for this lesson are module one and module two lessons one end to. So if you haven't watched those videos, just think of minute. Pause this and go back and check out them first.
So in this lesson, we're gonna learn why ethics are so important to cybersecurity. What ethics are really? And we're gonna take a look at laws, regulations and policies.
So let's get started into ethics.
Ethics are simply moral principles which govern a person's behavior. It's basically the driving force as to why anybody does what they do or right. It's the secret underlying force off what makes a person act in a certain way. Now wire ethics and cybersecurity so important
they're important because it is the only difference
between a good cybersecurity person and a bad cybersecurity person.
The good and the bad, the difference is simply this thin line, which is also known as ethics.
Good cyber people and bad cyber people really perform much of the same job and the same
techniques and the road. They really do pretty much the same thing. The only thing that differs is why they're doing it
now. Most security organizations have their own code of ethics. There's no one set standard code of ethics, but everyone kind of agrees on the same thing. Now I personally am a part of the I S C to organization, and the I C two
code of ethics is as follows Protect society, the common good and the necessary public trust.
Act honorably, justly, responsibly and legally
provide diligent and competent service, and it protect and advance the profession.
Now, since I am a member of the highest, see to it is it is my job, and I have a moral obligation to uphold these ethics as much as I possibly can.
So let's take a look at some very important laws and regulations. Ah, Similarly, as in the last video where we looked at the CW bees and the Si ves, there are just too many of them to know them all. It's too many to know, So it's better to know where to find them,
rather than kind of kind of having to remember all of them.
So a couple of really good places? A look. When it comes to laws and regulations, the first is Congress. One of the things Congress is really good at is keeping track of the laws and bills that are being passed and the documentation behind them. So individuals like you and me can go simply online to their website
and check it out.
Let's take a look at this one in more detail.
So if you come up here to the Congress dot gov website here, we can see that there's all kinds of current legislation, activities and information going on plenty of links you can click on. And but we want to search for current legislation and cybersecurity.
So we're gonna take a look at this year.
So if we search for cyber security,
we can see that there are currently quite a few ah cybersecurity bills currently being tracked. Right now we have this top one here securing American research from Cyber Theft Act. This one has just been introduced.
A couple of these have been introduced. This one has actually already passed the House and the Senate. So seconds headed to the president's desk, and there's really just a whole bunch of information you can kind of look here and see who sponsors it. What job is supposed to dio and was one of the current updates. Now you can limit your search
to some of these search techniques on the left,
or if you just happen to know the bill number or any of that information, you can type it up here
in the search bar.
The next is an ISA. This is kind of like the European version off the National Cyber Security Agency.
They have. They have some more things on Lee. Their stuff is focused mainly on obviously the U and their website can be found right here.
If you needed to look at any type of topics, or if you want to know what's going on, you can kind of browse around in here and see what's happening when, when it comes to cyber security in the European Union,
then also, the last one is missed. The National Institute of Standards and Technology. This is run by the Department of Commerce and here. Basically, this provides the the basically general practice standards for almost almost everything.
Now, cybersecurity is just like a very small part
off the standards and technology, obviously, so we can come down here to the topic section, we can click on cybersecurity and that we are in the cybersecurity topic section. From there you can choose the substrate framework. You can see the privacy framework. You can check out the initiative for cybersecurity
education. So when in doubt,
come come to nest when it comes to cyber security, If you don't have to implement something, see what the NIST standards and guidelines therefore missed also has a whole lot of publications that you can click on on. Then, from there you can really just search cybersecurity,
and you can come up with a whole bunch of cybersecurity publications that you can read that shows how to properly implement pretty much anything You wanted to know
some important laws and regulations that you should know. These are the ones you should be very familiar with, and the 1st 1 is hip up. That's a very well known one that all has to do with health insurance and the privacy regarding that.
There's the Gramm Leach Bliley Act, which is really health, which is basically determines how financial institutions handle sensitive information of the customers. There is the Homeland Security Act, which really formed the Homeland Security yum
back in 2002.
And then finally there is the GDP are, which is the popular data privacy regulation going on in Europe right now.
In today's video, we discussed ethics and why they are important. And we also took a look at some notable security laws and why they are poured in, as well as checking out where's a good spot to look for security laws, bills, frameworks and anything that you could possibly want to know about. Cyber security
Quiz time. All of these air good organizations the find information on cyber walls and regulations except a n'est
See Congress D in CIA.
If you said
be socks than you are correct, Socks is sure hand for Sarbanes Oxley, and it's a wall, not an organization for cyber laws and regulations.
Hope you guys learned a lot in this video, and I'll see you next time