iso 22301 lead implementer traininig

ISO/IEC 29100 Lead Privacy Implementer Training

Master the implementation and management of a Privacy Framework based on ISO/IEC 29100

Course Description

ISO/IEC 29100 provides a high-level framework for protecting the Personally Identifiable Information (PII) that is within Information and Communication Technology systems (ICT). This privacy framework provided by ISO/IEC 29100 applies not only to organizations but also for persons using the ICT, which do require privacy controls in order to process the PII.

Who Should Attend

  • Managers or consultants involved and concerned with privacy security
  • Privacy security managers responsible for defining the privacy safeguarding requirements related to PII within an ICT environment
  • Members of an Information and Communication Technology (ICT) system
  • Data protection and privacy officers

Course Duration

Day 1: Introduction to ISO/IEC 29100 and initiation of a Privacy Framework

  • Course objective and structure
  • Standard and regulatory framework
  • Privacy Framework based on ISO 29100
  • Fundamental Principles of Privacy
  • Privacy Legislation US & Europe
  • Initiating the Privacy Framework implementation
  • Understanding the organization and clarifying the privacy objectives

Day 2: Plan the implementation of a Privacy Framework

  • Analysis of Existing Controls
  • Leadership and approval of the Privacy Framework project
  • Privacy Framework Scope
  • Policy for privacy
  • Risk and impact assessment
  • Control Statement and management decision to implement the Privacy Framework
  • Definition of the organizational structure of Privacy

Day 3: Implementation of a Privacy Framework

  • Definition of the document management process
  • Design of controls and drafting of specific policies & procedures
  • Communication plan
  • Training and awareness plan
  • Implementation of privacy controls
  • Incident and Data Breach Management
  • Operations Management

Day 4: Privacy Framework monitoring, measurement, continuous improvement and evaluation

  • Monitoring, Measurement, Analysis and Evaluation
  • Internal Audit
  • Management Review
  • Treatment of problems and points of concern
  • Continual improvement
  • Competence and evaluation of implementers
  • Closing the training

Day 5: Certification Exam

Prerequisites

A fundamental understanding of ISO/IEC 29100 and comprehensive knowledge of ICT systems.