1800 419 8722
Courses

ISO 27701:2018 Foundation Course Features

2 days instructor led training by expert instructors.

Access to LMS study materials

Exam prep question bank

ChatGPT

Session recording access

Free retake for exam

 

Learning Objectives of ISO 27701:2018 Foundation Training

 

  • Understanding of ISO 27701
  • Relationship between 27701, 27001 and 27002 standards
  • Knowledge about Introduction (Fundamental concepts of PIMS and ISMS, PIMS Scope, Policy and Management approval)
  • Introduction to ISO 27701 (Context of the organization, Leadership, Planning, Support, Operation, Performance Evaluation and Improvement)

 

Target Audience for ISO 27701:2018 Foundation

 

CDO, CIO, DPO, Data Architects, Data Engineers, Data Analysts, Information and Privacy Professionals

 

Prerequisites

 

Exam Preparation and Certification information

 

  • Questions - 25 MCQ Questions
  • Duration – 45 minutes
  • Pass Marks - 50%
  • Closed book exam
  • Online proctored
  • Free second attempt

 

ISO 27701:2018 Foundation Certification Journey

 

 

Other Important Information

 

  • Course Materials will be provided
  • Case studies based on Employee Management system

 

Course Outline

Day 1
  • Introduction (Fundamental concepts of PIMS and ISMS, PIMS Scope, Policy and Management approval) 
  • Data Subject (Processing personal data, Lawful Processing, Conditions for consent, Notification of a personal data breach, Transfer of personal data to other countries) 
  • Privacy Governance & Management (Privacy Governance, Privacy Management, Privacy Frameworks, Privacy Roles and Responsibilities, Privacy Training & Awareness) 
  • Introduction to ISO 27701 (Context of the organization, Leadership, Planning, Support, Operation, Performance Evaluation and Improvement) 
  • Leveraging ISO 27001 
  • Privacy Risk Management (Risk Management Life Cycle, Third Party Risk Management, Privacy Incident Management, Privacy Impact Assessment) 
  • Leveraging ISO 27002 controls (Information Security policies, Organization of Information Security, human Resource Security, Asset management, Access Control, Cryptography, Physical & environmental Security, Communications Security, System acquisition, development & maintenance, Supplier relationships, Information security incident management, IS Business continuity, compliance)
Day 2
  • Additional ISO 27002 guidance for PII controllers (General Information, Conditions for collection & processing, Obligations to PII Principles, Privacy by design & Privacy by default, PII sharing, transfer & disclosure) 
  • Additional ISO 27002 guidance for PII Processors (General Information, Conditions for collection & processing, Obligations to PII principles, Privacy by design & Privacy by default, PII sharing, transfer & disclosure) 
  • Architecture Design (Privacy by Design, Privacy Protecting SDLC, Privacy by Default) 
  • Case study (Employee Management System Application (EMS) Privacy by Design) 
  • Audit Process - ISO 19011 / ISO 27008 (Audit team Roles & Responsibilities, Preparation for Audit, Planning for Audit, Conducting Audit, Reporting Audit, Audit Tools & Methodologies) 

Student feedback

4.8
Course Rating
70%
15%
20%
3%
2%

Write a Review

What is the experience of taking a course like?