27701LA.PNG

Data Protection & Privacy

Master the Audit of Privacy Information Management System (PIMS) based on ISO/IEC 27701

Who should attend?

  • Auditors seeking to perform and lead Privacy Information Management System (PIMS) certification audits

  • Managers or consultants seeking to master a PIMS audit process

  • Individuals responsible for maintaining conformance with PIMS requirements

  • Technical experts seeking to prepare for a PIMS audit

  • Expert advisors in the protection of Personally Identifiable Information (PII)

Course agenda

Day 1 | Introduction to Privacy Information Management System (PIMS) and ISO/IEC 27701

  • Training course objectives and structure

  • Standards and regulatory frameworks

  • Certification process

  • Fundamental information security and privacy concepts and principles

  • Privacy information management system (PIMS)

Day 2 | Audit principles, preparation, and initiation of an audit

  • Fundamental audit concepts and principles

  • The impact of trends and technology in auditing

  • Evidence-based auditing

  • Risk-based auditing

  • Initiation of the audit process

  • Stage 1 audit

Day 3 | On-site audit activities

  • Preparing for stage 2 audit (on-site audit)

  • Stage 2 audit

  • Communication during the audit

  • Audit procedures

  • Creating audit test plans

Day 4 | Closing of the audit

  • Drafting audit findings and nonconformity reports

  • Audit documentation and quality review

  • Closing of the audit

  • Evaluation of action plans by the auditor

  • Beyond the initial audit

  • Managing an internal audit program

  • Closing of the training course

Day 5 | Certification Exam

Learning objectives

  • Understand a Privacy Information Management System (PIMS) and its processes based on ISO/IEC 27701

  • Identify the relationship between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002, and other standards and regulatory frameworks

  • Acquire the competences of the auditor’s role in planning, leading, and following up on a management system audit in accordance with ISO 19011

  • Learn how to interpret the requirements of ISO/IEC 27701 in the context of a PIMS audit

Examination

The “PECB Certified ISO/IEC 27701 Lead Auditor” exam complies with the PECB Examination and Certification Program (ECP) requirements. The exam covers the following competency domains:

Domain 1 | Fundamental principles and concepts of a Privacy Information Management System (PIMS)

Domain 2 | Privacy Information Management System (PIMS) requirements

Domain 3 | Fundamental audit concepts and principles

Domain 4 | Preparation of an ISO/IEC 27701 audit

Domain 5 | Conducting an ISO/IEC 27701 audit

Domain 6 | Closing an ISO/IEC 27701 audit

Domain 7 | Managing an ISO/IEC 27701 audit program

General information

  • Certification fees are included in the exam price.

  • Participants will be provided with the training material containing over 450 pages of explanatory information and practical examples.

  • An Attendance Record worth 31 CPD (Continuing Professional Development) credits will be issued to participants who have attended the training course.

  • In case candidates fail the exam, they can retake the exam within 12 months following the initial exam for free.

For additional information, please contact us at info@ciso-dpo.online.

Dowload Brochures [here].