Explore the fundamentals of implementing the NIST Privacy Framework and managing security risks faced by your organization.
Overview
Syllabus
Introduction
- Privacy framework welcome
- What you should know
- Privacy framework introduction
- What is privacy?
- Why care about privacy?
- NIST Privacy Framework structure
- Establishing and improving a privacy program
- Privacy vs. security vs. compliance vs. risk
- Leveraging the NIST Privacy Framework for a privacy risk program
- Identify-P function
- Data inventory and mapping
- Business environment
- Data processing risk identification
- Privacy governance policies and procedures
- Privacy risk management strategy
- Monitoring, review, awareness, and training
- Data processing policies, processes, and procedures
- Data processing management
- Disassociated processing
- Communicate data processing policies and practices
- Challenge: NIST PRAM worksheets
- Data protection and maintenance practices and procedures
- Identity management, authentication, and access control
- Data security
- Protective technology
- Detecting privacy issues
- Response and recovery
- Privacy Impact Assessments (PIAs)
- Privacy management plans
- Privacy next steps and resources
Taught by
Ronald Woerner