Get unparalleled cyber security training from real-world practitioners in Nashville. Save $200 thru 10/30.

New York City Winter 2020

New York City, NY | Mon, Feb 10 - Sat, Feb 15, 2020
Event starts in 116 Days

A Practical Approach to Vendor Risk Management & Data Privacy

  • Norman Levine
  • Tuesday, August 27th, 7:15pm - 8:15pm

This talk will provide an overview of what elements are required to implement and deliver a successful Vendor Risk and Data Privacy agreement. It will cover company culture, how to prepare a checklist for an agreement and the essential IT elements within the agreement itself. Required policies and 3rd party certifications will be discussed along with key elements of focus. Included within the presentation will be a discussion on data privacy and what is necessary to potentially avoid costly fines. Key topics include the following:

  • The cultural affects- Don't change the culture but work within it
  • IT Checklist- With what data are you dealing and understanding what is required
  • Data Security Addendum- What are the essential requirements you need to know
  • Managing data privacy- To what standard should you ascribe and why
  • Reviewing the Information- Security Program and other policies within a company
  • 3rd Party Certifications- Continuous Monitoring The importance and why
  • Summary- Putting it all together

Speaker Bio: Norman Levine is an IT practitioner who built his first website 25 years ago and sold the first HTML editor "Hot Metal Pro" on it. In the late 90's he had his own weekend radio show, CyberTalk where he reviewed the latest software, books, and computer peripherals.

Spanning a quarter of a century, Norman has honed his skills and developed an expertise in Vendor Risk Management and Data Privacy. From 2013 to 2018 Norman was responsible for contractual oversight for all global contracts at Stanley Black & Decker that contained an IT component and/or data privacy requirement. It was his responsibility to ensure the efficacy of these vendors. Today, as a consultant, he works with companies in honing their skills within this space.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
  • Special Events: SANS-hosted events and other non-technical recreational offerings. This category includes, but is not limited to, Receptions and Information Tables.
Monday, February 10
Session Speaker Time Type
General Session - Welcome to SANS Bryan Simon Monday, February 10th, 8:00am - 8:30am Special Events
Tuesday, February 11
Session Speaker Time Type
You don't know HIPAA! Doc Blackburn Tuesday, February 11th, 7:15pm - 8:15pm SANS@Night