Home | Press | Contact Us | Testimonials | Clients | Sitemap

CSCS Associate™

A 1-Day Instructor-Led Security Compliance Program

CSCS Associate Logo

Become a CSCS Associate™ and align yourself with an organization that offers the only information security credential that exclusively addresses regulatory compliance and information security, the Certified Security Compliance Specialist™ (CSCS™). Being a CSCS Associate™ allows you to demonstrate your competence in the information security field with a baseline understanding of compliance security requirements. It may help attract potential employers and advance your career. As a CSCS Associate™, you may also take advantage of access to ecfirst.com's exclusive site, The Compliance Knowledge Center, as well as access to compliance tips, executive briefings, white papers and webinars.

This is a 1-day program and is ONLY delivered on-site. Employers need to schedule the CSCS Associate™ program at their site. CSCS Associate™ Exam is delivered at the end of the day in the class.

Learning Objectives

From this compliance and security training program you will:

  • Learn about major international regulations and standards including the ISO 17799:2005
  • Examine the PCI DSS framework
  • Review the HIPAA Security Rule and its impacts on digital healthcare infrastructure
  • Review key contingency compliance requirements for developing the framework for disaster recovery and emergency mode operation plans.

Target Audience

The complete 1-day CSCS Associate™ program is of value to compliance professionals and managers, security officers, security practitioners, privacy officers and senior IT professionals.

Certification Exam

The CSCS Associate™ exam validates knowledge and skill sets in information security for the following legislations, standards and frameworks:

  1. International Regulations & Security (25% of exam)
  2. Digital Healthcare & Security (25% of exam)
  3. ISO 17799 and International Regulations (25% of exam)
  4. Business Continuity Planning - (25% of exam)

The CSCS Associate™ Exam consists of 40 multiple-choice questions and the candidates have 60 minutes to complete the exam.

Exam Name

Exam Number

Number of Questions

Time Allowed

Passing Score

CSCSA-1

CSCA-101

40

60 Minutes

75%

All questions are multiple choice and are designed with one BEST answer.

Every CSCS Associate™ exam question has a stem (question) and five options (answer choices). The candidate is asked to choose the correct or best answer from the options. The stem may be in the form of a question or incomplete statement. In some instances, a scenario or description problem may be included. These questions normally include a description of a situation and require the candidate to answer one or more questions based on the information provided.

The candidate is cautioned to READ the question carefully. Many times a CSCS Associate™ exam question will require the candidate to choose the appropriate answer that is MOST LIKELY or BEST. In each instance, the candidate is required to read the question carefully, eliminate known incorrect answers and then make the best choice possible. 

All questions should be answered. There are no penalties for incorrect answers. Grades are based solely on the number of questions answered correctly; so do not leave any questions blank.

Course Outline

Module 1: Regulatory Compliance and Security

  • Core Objectives
  • U.S. Legislations
    • California’s Privacy and Security Requirements
    • FDA’s CFR 21
    • GLB
    • PCI DSS
    • NERC CSS
  • Important International Regulations
    • Japan’s PIP
    • Canada’s PIPEDA
    • Australia’s Privacy Act
    • European Union’s DPD
    • EC Directive
    • UK’s Data Protection Act
    • UK’s Freedom of Information Act

Module 2: Digital Healthcare & Security

  • Healthcare Security Challenges
  • U.S. HIPAA Security Legislation
  • Administrative Safeguards
  • Physical Safeguards
  • Technical Safeguards

Module 3: ISO 17799:2005 Standard

  • Objective
  • Scope
  • Key Domains

Module 4: Business Continuity Planning (BCP)

  • Definition and Scope
  • Components of a Contingency Plan
    • Disaster Recovery Plan
    • Emergency Mode Operation Plan
  • Classification of Information
  • Classification of Threats
  • Types of Alternate Sites
  • Getting Started

Exam Fee

The CSCS Associate™ exam fee is $495.00. Exam fees are not included in training costs.

Training Options

The 1-day CSCS Associate™ program is delivered worldwide. Call the ecfirst.com Academy at 515.453.8247 x17 today to discuss details about locations and schedules.

On Site Training

Bring ecfirst.com Academy training, certification and executive briefs to your site. ecfirst.com Academy will customize the session to meet your specific requirements and time frames.

ecfirst.com Academy Program Architect

Uday Ali Pabrai is a highly sought after InfoSec and regulatory compliance expert. Based on his hands-on consulting experiences, he developed a unique security methodology, BizShield™: The Seven Steps to Enterprise Security™. BizShield™ today provides the framework for many security initiatives at many client organizations. He has also developed specialized InfoSec security policy templates that can easily be tailored to address compliance and enterprise requirements.

Pabrai is the creator of the first program on Internet skills certification, CIW.  Today, CIW is the leading vendor neutral Internet certification program in the world.

Pabrai has also established the first and highly respected health care transactions, privacy, and security certification programs, Certified HIPAA Professional (CHP) and Certified HIPAA Security Specialist™ (CHSS™). The CHP and CHSS™ programs have been attended by several agencies of the United States Armed Forces, state and county governments, hospitals, insurance companies and IT as well as business professionals.

His hands-on, field accomplishments include leading a team of ten instructors to deliver customized regulatory compliance training to over 10,000 employees at the State of Oregon DHS. He was the lead architect for several risk analysis, vulnerability assessment (penetration testing) and contingency planning engagements across the United States.

Pabrai delivers keynote speaches at numerous conferences worldwide including, but not limited to the ISSA Conference, ISC2 Security Leadership Events, HIPAA Summit, National Council for Prescription Drug Programs (NCPDP) National HIPAA conference, VitalWorks, COMDEX, COMNET, Internet World and DCI's Internet Expo.

Pabrai is the author of several leading industry texts, including The Art of Information Security, available at the ecfirst.com e-store. He has published extensively on the subjects of enterprise and regulatory compliance including articles in PharmaVoice, Certification, Business Advisor, InetCE and several others.