ISO 27701 2018 Foundation
ISO 27701:2018 Foundation Certification Training Course
4.5
853 enrolled on this course
Last updated Sep 2024
ISO 27701:2018 Foundation Course Features
2 days instructor led training by expert instructors.
Access to LMS study materials
Exam prep question bank
Session recording access
Free retake for exam
Learning Objectives of ISO 27701:2018 Foundation Training
- Understanding of ISO 27701
- Relationship between 27701, 27001 and 27002 standards
- Knowledge about Introduction (Fundamental concepts of PIMS and ISMS, PIMS Scope, Policy and Management approval)
- Introduction to ISO 27701 (Context of the organization, Leadership, Planning, Support, Operation, Performance Evaluation and Improvement)
Target Audience for ISO 27701:2018 Foundation
CDO, CIO, DPO, Data Architects, Data Engineers, Data Analysts, Information and Privacy Professionals
Prerequisites
Exam Preparation and Certification information
- Questions - 25 MCQ Questions
- Duration – 45 minutes
- Pass Marks - 50%
- Closed book exam
- Online proctored
- Free second attempt
ISO 27701:2018 Foundation Certification Journey
Other Important Information
- Course Materials will be provided
- Case studies based on Employee Management system
Course Outline
- Introduction (Fundamental concepts of PIMS and ISMS, PIMS Scope, Policy and Management approval)
- Data Subject (Processing personal data, Lawful Processing, Conditions for consent, Notification of a personal data breach, Transfer of personal data to other countries)
- Privacy Governance & Management (Privacy Governance, Privacy Management, Privacy Frameworks, Privacy Roles and Responsibilities, Privacy Training & Awareness)
- Introduction to ISO 27701 (Context of the organization, Leadership, Planning, Support, Operation, Performance Evaluation and Improvement)
- Leveraging ISO 27001
- Privacy Risk Management (Risk Management Life Cycle, Third Party Risk Management, Privacy Incident Management, Privacy Impact Assessment)
- Leveraging ISO 27002 controls (Information Security policies, Organization of Information Security, human Resource Security, Asset management, Access Control, Cryptography, Physical & environmental Security, Communications Security, System acquisition, development & maintenance, Supplier relationships, Information security incident management, IS Business continuity, compliance)
- Additional ISO 27002 guidance for PII controllers (General Information, Conditions for collection & processing, Obligations to PII Principles, Privacy by design & Privacy by default, PII sharing, transfer & disclosure)
- Additional ISO 27002 guidance for PII Processors (General Information, Conditions for collection & processing, Obligations to PII principles, Privacy by design & Privacy by default, PII sharing, transfer & disclosure)
- Architecture Design (Privacy by Design, Privacy Protecting SDLC, Privacy by Default)
- Case study (Employee Management System Application (EMS) Privacy by Design)
- Audit Process - ISO 19011 / ISO 27008 (Audit team Roles & Responsibilities, Preparation for Audit, Planning for Audit, Conducting Audit, Reporting Audit, Audit Tools & Methodologies)
Student feedback
Reviews