Wednesday, March 3 & 10 2021 11:00 am – 1:00 pm CST

Workshop Title: Certified Cyber Security Architect (CCSA) Certification Training

Workshop Description: CCSA is an instructor-led 2-day program. The program validates knowledge and skill sets in cybersecurity with focus on the N 1ST Cybersecurity Framework, and the U.S. DoD cybersecurity mandate, CMMC. Core topics emphasized include establishing a credible, evidence-based enterprise cybersecurity program and developing a comprehensive incident response plan.

Learning Objectives: Upon completion of this workshop, the attendee/ student will be able to:

• Examine how to establish a cybersecurity program based on the NIST Cybersecurity Framework.
• Step through key areas that must be addressed in a credible incident response plan.
• Walk through core components, organization and CMMC Maturity Levels.
• Examine CMMC domains and CMMC capabilities required for organizations.

Who Should Attend: Anyone involved in designing, implementing, or defending critical infrastructure information networks and systems, those in information technology risk assessment, or organizational technology and cyber risk management leaders and managers

Presenter Name, Title, Organization: Uday Ali Pabrai, CEO, ecfirst

Note: Attendees will have the option to sit the CCSA exam and achieve the certification for an extra fee paid directly to the Instructor.

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, March 23, 2021 from 12:00 pm - 12:29 pm CST
The Cybersecurity Maturity Model Certification (CMMC) from the Department of Defense (DoD) is the cyber standard for this decade and beyond.

Get started with understanding how to take your knowledge with CMMC further, and examine certification requirements.

In this CMMC webinar, you will learn about:

• CMMC Readiness –policy development and assessment
• Understanding CMMC Maturity Levels
• Examining CMMC-AB certification requirements

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, April 13, 2021 from 2:00 pm - 2:29 pm CST
Learning Objectives:

• Examine organization of the NIST cybersecurity framework
• Walk through how the NIST cybersecurity framework aligns with HIPAA and other standards
• Developing plans and policies based on NIST standards

For more details, please contact Kris.Laidley@ecfirst.com

Thursday, April 22, 2021 from 10:00 am – 2:00 pm CST
In this CMMC Workshop, you will:

• Step through the CMMC Model, including capabilities, practices, and processes
• Understand the organization of CMMC domains
• Examine readiness to meet CMMC Maturity Level requirements

For more details, please contact Kris.Laidley@ecfirst.com

Wednesday, April 27, 2021 11:00 am – 1:00 pm CST

Workshop Title: NIST Cybersecurity Framework = Prescriptive Standard for HIPAA

Workshop Description: NIST Cybersecurity Framework is the framework that executives can trust to base their HIPAA compliance program. This framework can be used by organizations that may be small or large, including business associates, physician practices, hospitals, IT firms, government agencies, and other healthcare entities. The Cybersecurity Framework provides your organization with an opportunity to build a credible cybersecurity plan. The Cybersecurity Framework enables an organization like yours to determine your current cybersecurity capabilities and set enterprise goals for a target state. It helps you to establish a plan to improve and maintain your cybersecurity program. The Cybersecurity Framework comprises of three primary components: Profile, Implementation Tiers, and Core.

Learning Objectives: In this session you will learn about:

• Establishing an evidence-based HIPAA compliance program based on the NIST Cybersecurity Framework
• Mapping between HIPAA mandates and the NIST Cybersecurity Framework
• Key updates in the NIST Cybersecurity Framework including the requirement for managing cybersecurity within the supply chain (business associates)
• Build a prioritized roadmap towards enhanced cybersecurity practices.

Who Should Attend: Anyone involved in defending healthcare and public health critical infrastructure information networks and systems, those involved in cyber risk assessment and mitigation, or healthcare and public health leaders and managers

Presenter Name, Title, Organization: Uday Ali Pabrai, CEO, ecfirst

Presenter Biography: Ali Pabrai, MSEE, CISSP (ISSAP, ISSMP), Security +, CCSFP, is the CEO of ecfirst. A highly sought after information security and regulatory compliance expert, he has successfully delivered solutions on compliance and information security to organizations worldwide.

For more details, please contact Kris.Laidley@ecfirst.com

Monday, May 17, 2021 from 10:00 am - 10:29 am CST
Dozens of global and American standards are integrated within the HITRUST CSF. In this Webinar, we will:

• Explain how HITRUST CSF establishes a credible risk management framework for your organization
• Describe the organization of the HITRUST CSF standard
• Walk thru how to successfully achieve HITRUST CSF Certification

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, May 18, 2021 from 11:00 am - 3:00 pm CST
During these one-day events, participants will benefit from the opportunity to engage, collaborate and network with peers to discuss the challenges, best practices and lessons learned in effectively implementing a risk management program and improving cybersecurity practices by leveraging the HITRUST CSF, and other HITRUST programs.

Key Topics of Discussion:

• Understand recent updates introduced with the latest in CSF v9.4
• Leveraging the HITRUST CSF to implement the NIST Cybersecurity Framework
• Review authoritative sources such as CMMC, GDPR, CCPA, HIPAA, ISO 27001, and others integrated with the HITRUST CSF
• Examine key steps to successfully navigate and achieve HITRUST CSF Certification

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, August 31, 2021 from 12:00 pm – 12:29 pm CST
In this webinar, you will learn about:

• CCPA compared to CPRA
• New concepts that come with new requirements for providing data processing notices
• Examine opt out controls

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, August 17, 2021 from 2:00 pm - 2:29 pm CST
In this fast-paced, fact-based webinar, you will:

• Discuss how a Cybersecurity Assessment differs from a Penetration Test
• Review how to align a cybersecurity assessment with a risk assessment
• Determine approach for remediation of identified cyber gaps

For more details, please contact Kris.Laidley@ecfirst.com

Thursday, September 23, 2021 from 1:00 pm - 1:29 pm CST
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Determine which regulations (state and federal) to include in your scope
• Understand what is included in the four different report offerings and why you can start small and work your way up
• Learn the maturity matrix for policies and procedures implemented, measured, and managed

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, October 26, 2021 from 11:00 am – 11:29 am CST
The Cybersecurity Maturity Model Certification (CMMC) from the Department of Defense (DoD) is the cyber standard for this decade and beyond.
Get started with understanding how to take your knowledge with CMMC further, and examine certification requirements.
In this CMMC webinar, you will learn about:

• CMMC Readiness –policy development and assessment
• Understanding CMMC Maturity Levels
• Examining CMMC-AB certification requirements

For more details, please contact Kris.Laidley@ecfirst.com

Thursday, November 18, 2021 from 1:00 pm - 1:29 pm CST
Learning Objectives:

• Examine organization of the NIST cybersecurity framework
• Walk through how the NIST cybersecurity framework aligns with HIPAA and other standards
• Developing plans and policies based on NIST standards

For more details, please contact Kris.Laidley@ecfirst.com

Tuesday, December 14, 2021 from 11:00 pm - 11:29 pm CST
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Determine which regulations (state and federal) to include in your scope
• Understand what is included in the four different report offerings and why you can start small and work your way up
• Learn the maturity matrix for policies and procedures implemented, measured, and managed

For more details, please contact Kris.Laidley@ecfirst.com

September 02, 2021 12:00 pm - 1:30 pm CDT
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Understand why CMMC is such a valued reference for addressing risks in the cyber supply chain (for e.g., your business associates).
• Walk through core components, organization, and CMMC maturity levels
• Navigate requirements to achieve CMMC certification.
• Examine key steps for establishing a CMMC-based compliance and cyber program.

For more details, please contact Kris.Laidley@ecfirst.com

September 20, 2021
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Establishing an evidence-based HIPAA compliance program based on the NIST Cybersecurity Framework.
• Key updates in the NIST Cybersecurity Framework including the requirement for managing cybersecurity within the supply chain (business associates).
• Examine DoD’s CMMC and NIST standards.
• Build a prioritized roadmap towards enhanced cybersecurity practices.

For more details, please contact Kris.Laidley@ecfirst.com

September 28, 2021
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Walk through how HITRUST CSF maps to and addresses ISO 27001, HIPAA, PCI DSS, and NIST standards.
• Evaluate basing a HIPAA Privacy and Security compliance program on HITRUST CSF.
• Step through core components of HITRUST CSF.
• Examine the prescriptive and scalable requirements of HITRUST CSF.
• Understand how to establish a credible enterprise cybersecurity program on HITRUST CSF.

For more details, please contact Kris.Laidley@ecfirst.com

September 29, 2021
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Establish an evidence-based HIPAA compliance program based on the NIST Cybersecurity Framework.
• Map between HIPAA mandates and the NIST Cybersecurity Framework.
• Understand key updates in the NIST Cybersecurity Framework including the requirement for managing cybersecurity within the supply chain (business associates).

For more details, please contact Kris.Laidley@ecfirst.com

September 30, 2021
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Establishing an evidence-based program based on the Framework.
• Mapping between compliance mandates such as CMMC, ISO 27001, HIPAA, PCI DSS, and the NIST Cybersecurity Framework.
• Core components of the Framework, including Functions, Categories and Sub-categories.
• Managing cyber risk in the supply chain and building a credible cybersecurity plan.

For more details, please contact Kris.Laidley@ecfirst.com

October 20, 2021
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Examine encryption mandates defined in HIPAA Security, HITECH Act, PCI DSS, State regulations and more.
• Review specific areas that encryption can have a significant impact in lowering enterprise risk, while improving compliance posture.
• Step through core elements of an encryption policy to address both at rest and in motion requirements.
• Understand how to simplify the use of encryption in your organization and do so consistently.

For more details, please contact Kris.Laidley@ecfirst.com

November 01, 2021
Examine the over 40 Authoritative Sources within the HITRUST CSF

• Walk through core components, organization and CMMC Maturity Levels.
• Examine CMMC domains and maturity processes expected to be performed at each of the CMMC Levels.
• Review the list of CMMC capabilities required for organizations.
• Walk through key steps for establishing a credible CMMC-based cybersecurity program.

For more details, please contact Kris.Laidley@ecfirst.com