UST LOGO

Introduction to Core Regulatory Frameworks- lectures

A course by

EA
4.00$ 5.00$
  • Level
    All Levels
  • Last Updated
    April 24, 2026
  • Certificate
    Certificate of completion
Course Duration: 0

Tags

📚 Lectures
0 (0 Ratings)
Course level:All Levels
Categories FOUNDATION MEMBERSHIP

Description

This course provides a foundational understanding of the core regulatory frameworks that shape modern cybersecurity and governance environments. Rather than overwhelming students with technical language, this training explains frameworks in clear, practical terms — showing how laws, regulations, standards, and frameworks connect to real-world organizational operations. Students will explore why frameworks exist, how organizations choose…

To access this content, you must purchase Advanced and Specialization - monthly, Advanced and Specialization - yearly, GRC CORE -monthly or GRC CORE.

Requirements

  • • No prior cybersecurity or GRC experience required
  • • Recommended as a foundational prerequisite before taking Introduction to Governance, Risk & Compliance
  • • Designed to help students understand the regulatory environment before learning governance and risk frameworks
  • • Ideal preparation for advanced courses such as ISO 27001, RMF implementation, and AI-GRC

Target Audience

  • Beginners entering Governance, Risk, and Compliance (GRC) roles
  • • Cybersecurity professionals seeking to understand regulatory frameworks and compliance environments
  • • Students preparing for NIST RMF, ISO 27001, or other framework-based training
  • • Professionals who want clarity on how regulations, standards, and frameworks connect
  • • Anyone interested in understanding how organizations build structured compliance and governance programs

Course Prerequisite(s)

What I will learn?

  • By the end of this course, students will be able to:
  • • Clearly distinguish between laws, regulations, standards, frameworks, and controls
  • • Understand the purpose and scope of key regulatory structures such as FISMA, NIST, FIPS, FedRAMP, and STIGs
  • • Explain how government regulations and regulatory frameworks influence cybersecurity governance and compliance programs
  • • Understand how NIST publications guide risk-based security practices used across organizations
  • • Identify how global and industry frameworks such as GDPR, ISO 27001, HIPAA, PCI DSS, SOC reports, and COBIT fit into the regulatory landscape
  • • Understand how organizations select frameworks based on regulatory obligations, industry requirements, and business needs
  • • Build a clear mental model of how regulations, frameworks, and controls support Governance, Risk, and Compliance programs

Course Curriculum

Introduction to Core Regulatory Frameworks
This section introduces students to the foundational regulatory frameworks that govern modern cybersecurity and compliance environments. Learners will explore the differences between laws, regulations, standards, and frameworks, and understand how these structures influence organizational governance, risk management, and internal controls. This module provides the clarity needed to confidently navigate core regulatory systems without being overwhelmed by technical complexity.

  • What Is FISMA?
    06:09
  • Who Must Follow FISMA?
    03:32
  • What Does “Risk-Based” Mean Under FISMA?
    07:16
  • What Does NIST Publish?
    08:23
  • How NIST Is Used in the Real World
    07:54
  • What Are FIPS?
    03:59
  • How FIPS Relates to NIST & FISMA
    07:32
  • What Is FedRAMP?
    05:39
  • Who FedRAMP Applies To
    07:16
  • What “Authorization” Means
    11:03
  • What Are STIGs?
    10:11
  • Who Uses STIGs?
    07:08
  • How STIGs Fit with FISMA, NIST, and FIPS
    04:22
  • One System, One Story
    07:50
  • From FISMA & RMF to GDPR: A Global Shift in Thinking
    11:24
  • Does GDPR Use NIST or RMF?
    05:08
  • Key GDPR Concepts (Beginner-Safe)
    06:19
  • GDPR Core Principles Explained
    08:53
  • GDPR Data Subject Rights Explained
    06:08
  • GDPR Roles: Controller, Processor & DPO
    10:26
  • GDPR Breach Notification & Fines
    09:38
  • What Is ISO 27001?
    08:43
  • What Is ISO 27002?
    04:26
  • Who Uses ISO 27001 (and Why)
    03:09
  • What Are “Controls” in ISO 27002?
    05:22
  • Certification vs Compliance (Very Important)
    08:28
  • What Is ISO 42001?
    06:09
  • Why ISO 42001 Exists
    09:54
  • What Is HIPAA?
    06:34
  • What HIPAA Requires (High Level)
    05:41
  • What Is HITECH?
    07:49
  • What HITECH Added
    07:43
  • How HITECH Fits with HIPAA
    03:48
  • What Is HITRUST?
    04:30
  • Who Uses HITRUST (and Why)
    03:13
  • HITRUST vs HIPAA (Very Important)
    04:06
  • What Is PCI DSS?
    05:23
  • Who PCI DSS Applies To (Very Important)
    03:54
  • What PCI DSS Requires (High Level)
    05:00
  • What Is SSAE 18?
    06:45
  • What Are SOC Reports?
    08:02
  • What Is SOX?
    06:36
  • What SOX Requires (High Level)
    06:42
  • What Is COBIT?
    05:39
  • Who Uses COBIT (and Why)
    05:29
  • COBIT vs Other Frameworks (Key Distinction)
    09:28

Student Ratings & Reviews

No Review Yet
No Review Yet