The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)

Rebecca Herold - Rebecca Herold & Associates, LLC

Students: Spring 2024, unless noted otherwise, sessions will be virtual on Zoom.

Privacy Potpourri: Changing Privacy from the Bottom Up

Apr 08, 2015

Download: Video Icon MP4 Video Size: 222.7MB  
Watch on Youtube Watch on YouTube


Rebecca will provide a brief discussion of the general consideration of what "privacy" and "personal information" really are, in addition to important factors when making privacy risk assessment. She will also discuss some of her work and research in recent years involving medical devices, smart meters, geo location, and a wide host of other Internet of Things and Big Data scenarios. Long with this will be discussion of the need to be able to identify privacy risks that accompany the use of new and evolving technologies, and then determine the best controls to use to mitigate them. This is intended to be an interactive and thought provoking session. Rebecca will also a copy of her new book, "Data Privacy for the Smart Grid" (, published by CRC Press, to an attendee.

About the Speaker

Rebecca Herold
Rebecca is widely recognized and respected and has been providing information privacy, security and compliance services, tools and products to organizations in a wide range of industries for over two decades. Rebecca has authored 16 published books, most recently "The Practical Guide to HIPAA Privacy and Security Compliance 2nd Edition" in October, 2014 and "Data Privacy for the Smart Grid" in January, 2015, both published by CRC Press. Rebecca is currently authoring the ISACA Privacy Program Management Guide which will be released during Q3 of 2015.
Rebecca was one of the first practitioners to be responsible for both information security and privacy starting in 1996 in a multi-national insurance and financial organization that was establishing one of the first online banks. In June 2009, Rebecca was asked to lead the NIST SGIP Smart Grid Privacy Subgroup, where she also led the Privacy Impact Assessment (PIA) for the home to utility activity, the very first performed in the electric utilities industry. In 2015 Rebecca also was asked to work for NIST for their Privacy Engineering initiative. Rebecca is a co-owner for the SIMBUS Information Security and Privacy Services business, currently with the premier flagship HIPAA Compliance Tools and Vendor Tracker services ( for healthcare organizations and their business associates to meet their HIPAA, HITECH and other legal requirements. Rebecca has been an Adjunct Professor for the Norwich University Master of Science in Information Security & Assurance (MSISA) program since 2005. Rebecca currently serves on multiple advisory boards for security, privacy and high-tech technology organization. Rebecca is frequently interviewed and quoted in diverse broadcasts and publications such as IAPP Privacy Advisor, BNA Privacy & Security Law Report, Wired, Popular Science, Computerworld, IEEE's Security and Privacy Journal, and many others.
In addition to achieving CISSP, CISM, CISA, and FLMI certifications, Rebecca is CIPP/US, CIPM and CIPT certified, is a member of the IAPP Certification Advisory Board, and is an instructor for the IAPP's CIPT, CIPM, CIPP/US and CIPP Foundations classes. Rebecca has received numerous awards and recognitions for her privacy and information security work over the years.
Owner & CEO, The Privacy Professor ( &
Co-Owner & CVO, SIMBUS Information Security and Privacy Services, HIPAA Compliance Tools (
Partner, Compliance Helper (
Adjunct Professor for the Norwich University Master of Science in Information Security and Assurance (MSISA) program (
Twitter ID: PrivacyProf (
Linked In:

Ways to Watch


Watch Now!

Over 500 videos of our weekly seminar and symposia keynotes are available on our YouTube Channel. Also check out Spaf's YouTube Channel. Subscribe today!