Certified Information Privacy Manager (CIPM) Cert Prep: 4 Privacy Operational Life Cycle: Protect

Get ready to tackle the fourth domain of the Certified Information Privacy Manager (CIPM) certification exam.

Introduction

• Protecting personal data
• What you should know
• Study resources

1. Information Security Principles

• Security and privacy
• The goals of information security
• Need to know and least privilege
• Separation of duties

2. Risk Management

• Understanding risks
• Risk assessment
• Risk treatment
• Selecting security controls

3. Identity and Access Management

• Authentication and authorization
• Password security
• Multifactor authentication
• Account and privilege management
• Account monitoring
• Provisioning and deprovisioning
• Authorization

4. Security Governance

• Regulations and laws
• Security policy framework
• Best practice security policies

5. Threat Identification and Prevention

• Malware prevention
• Port scanners
• Vulnerability scanners

6. Data Security

• Understanding encryption
• The data lifecycle
• Logging and monitoring

7. Security Awareness and Training

• Social engineering
• Impersonation attacks
• Security awareness training
• Data Anonymization
• Data Obfuscation

8. Privacy by Design

• Privacy by Design
• Development methodologies
• Maturity models
• Change management

Conclusion

• Continuing your studies