ISO/IEC 29100 Lead Privacy Implementer Training

Master the implementation and management of a Privacy Framework based on ISO/IEC 29100

ISO/IEC 29100 provides a high-level framework for protecting the Personally Identifiable Information (PII) that is within Information and Communication Technology systems (ICT). This privacy framework provided by ISO/IEC 29100 applies not only to organizations but also for persons using the ICT, which do require privacy controls in order to process the PII.

Day 1: Introduction to ISO/IEC 29100 and initiation of a Privacy Framework

• Course objective and structure
• Standard and regulatory framework
• Privacy Framework based on ISO 29100
• Fundamental Principles of Privacy
• Privacy Legislation US & Europe
• Initiating the Privacy Framework implementation
• Understanding the organization and clarifying the privacy objectives

Day 2: Plan the implementation of a Privacy Framework

• Analysis of Existing Controls
• Leadership and approval of the Privacy Framework project
• Privacy Framework Scope
• Policy for privacy
• Risk and impact assessment
• Control Statement and management decision to implement the Privacy Framework
• Definition of the organizational structure of Privacy

Day 3: Implementation of a Privacy Framework

• Definition of the document management process
• Design of controls and drafting of specific policies & procedures
• Communication plan
• Training and awareness plan
• Implementation of privacy controls
• Incident and Data Breach Management
• Operations Management

Day 4: Privacy Framework monitoring, measurement, continuous improvement and evaluation

• Monitoring, Measurement, Analysis and Evaluation
• Internal Audit
• Management Review
• Treatment of problems and points of concern
• Continual improvement
• Competence and evaluation of implementers
• Closing the training

Day 5: Certification Exam

A fundamental understanding of ISO/IEC 29100 and comprehensive knowledge of ICT systems.