I get these questions on a regular basis:

 

First question: “Do we need to know US laws for the CISSP or CISM certifications, aren’t they international certifications?”

The answer to this one is yes and yes. You DO need to know US laws, while both the CISSP and CISM ares international certifications, they were also made and designed in the US, and from an US centric world.

I have a list of the US laws you need to know for the certifications, scroll down to “US Laws you should know for the CISSP and CISM exams” here: https://thorteaches.com/cissp-resources/

 

Second question: “Do we need to know the burden of proof for US courts?”

The answer is again yes, for the CISSP/CISM know the US courts burdens of proof. For your real life job know the ones that govern where you live (or ask your legal department).

Wiki link on the burden of proof and a slide from my CISSP course below that:

https://en.wikipedia.org/wiki/Burden_of_proof_(law)