This text is a printed edition of the California Consumer Privacy Act of 2018 (CCPA) and its amendments. It is a handy reference guide for law students, attorneys, or others who need to refer to the law. Please keep in mind, this text contains only the law and does not include any contextual notes. This text includes the full of the CCPA that was amended in the California State Legislature, in the form of SB-1121, on September 2018. This text also includes additional substantive legislative proposals that amended the CCPA in October 2019: AB-25, AB-874, AB-1130, AB-1146, AB-1202, AB-1355, AB-1564.

This text is a printed edition of the California Consumer Privacy Act of 2018 (CCPA) and its amendments. It is a handy reference guide for law students, attorneys, or others who need to refer to the law. Please keep in mind, this text contains only the law and does not include any contextual notes. This text includes the full of the CCPA that was amended in the California State Legislature, in the form of SB-1121, on September 2018. This text also includes additional substantive legislative proposals that amended the CCPA in October 2019: AB-25, AB-874, AB-1130, AB-1146, AB-1202, AB-1355, AB-1564.

THIS IS THE 2019 CCPA UPDATE AND USE OF NIST SP 800-171, AN OPEN/NON-PROPRIETARY CYBER FRAMEWORK.Why should you buy this book? NIST 800-171 is one of several candidate frameworks that the California AG has recommended. Assuming the AG allows businesses to select an appropriate solution, NIST 800-171 is ideal. It is ideal because it is compact and structured specific to security controls already used by the federal government. The 2020 deadline is fast approaching, we have designed this version specific to your needs and the CCPA.In this 2019 Update to the original book, we have included information and changes affecting businesses attempting to meet the current CCPA deadlines.Understanding What the CCPA is and How to Effectively Apply the NIST 800-171 Security Framework.The California Consumer Privacy Act (CCPA) and NIST 800-171 designed to provide clear direction and understanding of how to implement the CCPA either in a business, agency or organization. The CCPA provides provisions specific to California residents and the companies regarding the 2018 compulsory law to protect personal information statewide. While NIST 800-series Cybersecurity publications tell a business "what" is required, they do not necessarily help in telling "how" to meet the 110 security control requirements in NIST 800-171. This book is also written to explain what the National Institute of Standards and Technology (NIST) 800-171 security controls require and how to meet them effectively for the purposes of CCPA compliance. And, will walk you and your IT staff through the security controls in enough detail to ensure a complete and "good faith" security effort has occurred.The author, Mr. Mark Russo was the former Senior Information Security Engineer within the Department of Defense's (DOD) F-35 Joint Strike Fighter program. He has an extensive background in cybersecurity and is an expert in the Risk Management Framework (RMF) and DOD Instruction 8510 which implements RMF throughout the DOD and the federal government. He holds several major cybersecurity certifications to include the Certified Information Systems Security Professional (CISSP) certification and a CISSP in information security architecture (ISSAP). He holds a 2017 certification as a Chief Information Security Officer (CISO) from the National Defense University, Washington, DC. He retired from the US Army Reserves in 2012 as the Senior Intelligence Officer.He is also the former Chief Information security Officer (CISO) at the Department of Education. During his tenure he led an aggressive effort to close over 95% of the outstanding US Congressional and Inspector General cybersecurity shortfall weaknesses spanning as far back as five years. He speaks regularly within the federal government and Intelligence Community on advanced topics regarding the evolution of cybersecurity in the 21st Century.

This book presents findings from the papers accepted at the Cyber Security Education Stream and Cyber Security Technology Stream of The National Cyber Summit’s Research Track, reporting on the latest advances on topics ranging from software security to cyber attack detection and modelling to the use of machine learning in cyber security to legislation and policy to surveying of small businesses to cyber competition, and so on. Understanding the latest capabilities in cyber security ensures that users and organizations are best prepared for potential negative events. This book is of interest to cyber security researchers, educators, and practitioners, as well as students seeking to learn about cyber security.

WELCOME TO THE RELEASE OF THE 2020 RELEASE OF THE CCPA DEFINITIVE GUIDEThe author has over 25 years in program management, intelligence operations, and cybersecurity and is the #1 expert on NIST 800-171 application. In this edition we have included information and changes affecting businesses attempting to meet the current CCPA deadlines. The author has included an additional chapter on current 2019-2020 amendments, and provides a plain-English interpretation for the reader. Understanding what the CCPA is and how to effectively apply the NIST 800-171 Security Framework is the approach of this how-to guide. The 2020 California Consumer Privacy Act (CCPA) Guide designed to provide clear direction and understanding of how to implement the CCPA either in a business, agency or organization. The CCPA provides provisions specific to California residents and the companies regarding the 2018 compulsory law to protect personal information statewide. While NIST 800-series cybersecurity publications tell a business "what" is required, they do not necessarily help in telling "how" to meet the 110 security control requirements in NIST 800-171. This book is also written to explain what the National Institute of Standards and Technology (NIST) 800-171 security controls require and how to meet them effectively for the purposes of CCPA compliance. And, will walk you and your IT staff through the security controls in enough detail to ensure a complete and "good faith" security effort has occurred.Mr. Russo is the former Chief Information Security Officer (CISO) for the Department of Education where he and his team were responsible for closing over 95% of the outstanding security findings identified by the House Oversight Committee in 2016 . He was also a Senior Information Security Engineer with the Department of Defense's (DOD) F-35 Joint Strike Fighter program. He has an extensive background in cybersecurity and is an expert in the Risk Management Framework (RMF) and DOD Instruction 8510 which implements RMF throughout the DOD and the federal government. He holds both a Certified Information Systems Security Professional (CISSP) certification and a CISSP in information security architecture (ISSAP). He holds a 2017 certification as a Chief Information Security Officer (CISO) from the National Defense University, Washington, DC. He retired from the US Army Reserves in 2012 as the Senior Intelligence Officer.He speaks regularly within the federal government and Intelligence Community on advanced topics regarding the evolution of cybersecurity in the 21st Century.