The Quest for ISC2 Certification: Navigating the World of Non-repudiation and Privacy

Once upon a time, in a land filled with e-commerce and electronic transactions, there was a young professional on a quest to become ISC2 certified. Along the way, they encountered the tricky concept of “Non-repudiation.” This legal term, they soon learned, meant holding every user accountable for their actions on their account. It was a way to protect against people falsely denying they had performed a certain action, like denying they made an online purchase.

But their journey didn’t stop there. They soon stumbled upon another important concept: “Privacy.” This, they discovered, was the right for individuals to control how information about themselves was shared. With more and more data being collected and stored digitally across all industries, the need for privacy legislation and compliance was becoming increasingly important.

Global privacy was a huge issue to consider when thinking about how to collect and secure personal information. In some lands, like the European Union, there was a law called the General Data Protection Regulation (GDPR) to protect data and privacy. In other lands, like the US, there was a law called the Health Insurance Portability and Accountability Act (HIPAA) that controlled how medical information must be kept private.

As a member of an organization’s data protection team, the young professional realized they wouldn’t need to be able to interpret all these laws, but they would need to understand them and how they applied to the organization they worked for. And with that knowledge, they were able to continue on their quest to become ISC2 certified. That’s me though. Happy Reading!