SCIPP INTERNATIONAL - World-class security awareness training products that achieve compliance at a fraction of the time and cost.

SCIPP International™ is a global non-profit organization dedicated to solving information security problems where they need to be solved - at the human level. SCIPP delivers information security awareness training and certification programs for enterprises throughout the world, with a focus on increasing understanding and awareness, instilling positive behavioral changes and satisfying federal compliance mandates as they relate to protecting your important information assets.

Founded in 2006 by Winn Schwartau, a lifelong advocate of security awareness and lead by a Board of Advisors of twenty industry luminaries, SCIPP security awareness training and certification is based upon the SCIPP GAP™ the common body of knowledge describing SCIPP's 10 generally accepted best practice areas. SCIPP issues Enterprise Certifications for organizations who wish to demonstrate their due care and due diligence to auditors, regulators, governors, and insurance agents.

In 1997 the U.S. General Accountability office (GAO) identified information technology security as "a new high risk area that touches every major aspect of government operations" (Report# GAO/HR-97-30). Since then, the regulatory environment has evolved to deal with corporate scandals (Sarbanes-Oxley), acts of terrorism (The USA PATRIOT Act), electronic access to patient information (HIPAA), the protection of consumer information (Gramm-Leach-Bliley), and the management of clinical trial data (FDA Title 21 CFR Part 11) - to name a few. Attached to some of these regulations are fines and prison terms for regulated institutions that are found in noncompliance. Perhaps more importantly, other risks of non-compliance includes the public disclosure of key assets, loss of customers, de-listing from stock exchanges, damage to brand or company reputation, negative impact to stock price, shareholder lawsuits, and a loss in confidence in key company stakeholders.

"Companies should, and must, integrate a well-rounded security awareness program which combines active and passive messaging to achieve organizational goals of meeting mandated requirements and customer expectations. Practically every company falls under the jurisdiction of one or more mandates, such as HIPAA, Basel II, ISO 17799, SOX, FISMA, and PCI-DSS. Rest assured that all awareness courses produced by SCIPP International meet the requirements."
- Winn Shcwartau, Founder of SCIPP International

Raise Awareness, Reduce Business Risk And Achieve Compliance With Best Business Practices That Align With All Known Regulations, Guidelines And Standards - TODAY!

Security Awareness Training (General End-User Awareness - satisfies 12.1 of the PCI-DSS requirements)

PCI-DSS (Secure Web App Training to support 6.5 of the PCI-DSS requirement)