16      0

1778671 - Secure My Privacy

‐ Oct 18, 2021 4:15pm

Privacy engineers are an integral part of ensuring that privacy risk is mitigated and privacy implications are addressed. The efficacy of privacy engineers is fundamentally dependent on their ability to influence. The cross-functional nature of privacy engineering dictates that privacy risk and impact assessments shall consider third-party risk, legal and compliance requirements, security as well as business drivers to build a culture of privacy by design over time. Security plays a significant role in implementing risk mitigation strategies to address privacy risk. While privacy principles are high level, a common governing framework integrating privacy and cybersecurity aligned with the enterprise-level risk management framework can assure that privacy considerations are embedded at the design phase and monitored on an ongoing basis.

Learning Objectives:

  • Gain an understanding of the comprehensive security and privacy framework, NIST Privacy Framework and its relationship to NIST CSF.
  • Learn about measuring and reporting on efficacy of privacy mitigation strategies and understand how the outcome of privacy risk/impact assessment feeds into security risk mitigation strategies.
  • Understand the significance of establishing a Privacy by Design mindset integrated into security by design as part of product design.