PECB Certified ISO 27701 Lead Implementer

Training duration: 32 ac h (4 days).

Target audience:

  • Managers and consultants involved in privacy and data management
  • Expert advisors seeking to master the implementation of a Privacy Information Management System
  • Individuals responsible and accountable for Personally Identifiable Information (PII) within organizations
  • Individuals responsible for maintaining conformance with data privacy regimes requirements
  • PIMS team members

Prerequisites: earlier practical exposure in managing the business continuity or auditing

Contents of this training

Contents of this training

After acquiring the necessary expertise to perform this audit, you can sit for the exam and apply for a “PECB Certified ISO/IEC 27701 Lead Implementer” credential. By holding a PECB Lead Auditor Certificate, you will demonstrate that you have the capabilities and competencies to audit organizations based on best practices.

Specific course content will include

  • Day 1
    • Introduction to ISO/IEC 27701 and initiation of a PIMS
    • Training course objectives and structure
    • Standards and regulatory frameworks
    • Privacy Information Management System (PIMS)
    • Fundamental concepts and principles of information
      security and privacy
    • Initiation of the PIMS implementation
    • Analysis of the ISMS scope and Statement of
      Applicability
    • PIMS scope
    • Management approval
    • Privacy policy
    • Privacy risk assessment
  • Day 2
    • Planning the implementation of a PIMS
    • Privacy impact assessment
    • PIMS Statement of Applicability
    • Documentation management
    • Selection of controls
    • Implementation of controls
  • Day 3
    • Implementing a PIMS
    • Implementation of controls (cont’d)
    • Implementation of controls specific for PII controllers
    • Implementation of controls specific for PII
      processors
  • Day 4
    • PIMS monitoring, continual improvement and preparation for the certification audit
    • Awareness, training, and communication
    • Monitoring, measurement, analysis, evaluation,
      and management review
    • Internal audit
    • Treatment of nonconformities
    • Continual improvement
    • Preparing for the certification audit
    • Certification process and closing of the training
      course
  • Day 5
    • Certification Exam

Intended outcome

Learning objectives:

  • Master the concepts, approaches, methods and techniques used for the implementation and effective management of a PIMS;
  • Learn about the correlation between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory
    frameworks;
  • Understand the operation of a PIMS based on ISO/IEC 27701 and its principal processes;
  • Learn how to interpret the requirements of ISO/IEC 27701 in the specific context of an organization;
  • Develop the expertise to support an organization in effectively planning, implementing, managing, monitoring and
    maintaining a PIMS.

Price includes:

  • training;
  • certification exam voucher;
  • course materials;
  • certification of attendance the course.

Täienduskoolituse õppekavarühm: informatsiooni- ja kommunikatsioonitehnoloogia interdistsiplinaarne õppekavarühm

Tags:

Cost

1980€ +VAT

Location

Online Training
Categories

Trainer

  • Andro Kull Andro Kull
    Andro Kull
    Andro Kull

    Andro Kull during his career, has worked in both sectors, public and private. In the previous years he has worked for the financial sector with regards to IT and information security, and for the energy sector with regards to IT risks, where security and continuity demands are very high. Kull started his career as IT specialist and IT manager, and has worked extensively as IT auditor and as IT risk manager for one of the largest company in Estonia. At the same time, he founded a small consulting company and managed projects related to IT risk assessment, the implementation of security measures, business continuity planning (BC), planning for recovery (DR), and crisis management mostly in public sector organizations.

    The international environment is not new to Andro Kull, since he has participated in the European Central Bank internet payment security working group. Kull has been cooperating with the IT banking supervisors on an international level. Furthermore, he has organized one international conference in Tallinn. In addition, he has worked for European Union DG Connect as advisor connected with IT risk management recommendations development.

    Andro Kull holds a PhD degree from the University of Tampere, concentrating on the IT oversight and compliance verification methodologies, and he currently is lecturing IT risk and information security management issues at the University of Tallinn.

Related Events