Data Breach Managementのトレーニングコース

There is a need to provide adequate training on the Data Protection Act 1998 "the Act" and its implications for both organisations and individuals. There are important differences between the Act and its predecessor, the Data Protection Act 1984. In particular, the Act contains important new obligations in relation to manual records and transborder data flows, a new notification system and amended principles. It is important to understand the Act in the European context.

Those experienced in data protection issues, as well as those new to the subject, need to be trained so that their organisations are confident that legal compliance is continually addressed. It is necessary to identify issues requiring expert data protection advice in good time in order that organisational reputation and credibility are enhanced through relevant data protection policies and procedures.

Objectives

The aim of the syllabus is to promote an understanding of how the data protection principles work rather than simply focusing on the mechanics of regulation. The syllabus places the Act in the context of human rights and promotes good practice within organisations. On attaining the certificate, award holders will possess:

• appreciation of the broader context of the Act
• understanding of the way in which the Act and the Privacy and Electronic Communications (EC Directive) Regulations 2003 work a broad understanding of the way associated legislation relates to the Act an understanding of what has to be done to achieve compliance a recognised qualification in data protection

Course Synopsis

The syllabus comprises three main parts, each with many sub-sections!

Context - this will address the origins of and reasons for the Act together with consideration of privacy in general. Law – Data Protection Act - this will address the main concepts and elements of the Act and subordinate legislation. Application - this will consider how compliance is achieved and how the Act works in practice.

This instructor-led, live training in 日本 (online or onsite) is aimed at supply chain professionals who wish to establish effective control and oversight of their supply chain, especially as it relates to cybersecurity.

By the end of this training, participants will be able to:

• Understand the security oversights that can bring about significant damage and disruption to a supply chain.
• Break down a complex security problem into manageable and actionable parts.
• Address common supply chain vulnerabilities by analyzing high risk areas and engaging with stakeholders.
• Adopt best practices in securing a supply chain.
• Noticeably reduce or eliminate the biggest risks to an organization's supply chain.

This is an Instructor led course, and is the non-certification version of the "CDP - Certificate in Data Protection" course

Those experienced in data protection issues, as well as those new to the subject, need to be trained so that their organisations are confident that legal compliance is continually addressed. It is necessary to identify issues requiring expert data protection advice in good time in order that organisational reputation and credibility are enhanced through relevant data protection policies and procedures.

Objectives:

The aim of the syllabus is to promote an understanding of how the data protection principles work rather than simply focusing on the mechanics of regulation. The syllabus places the Act in the context of human rights and promotes good practice within organisations. On completion, you will have:

• an appreciation of the broader context of the Act.
• an understanding of the way in which the Act and the Privacy and Electronic Communications (EC Directive) Regulations 2003 work
• a broad understanding of the way associated legislation relates to the Act
• an understanding of what has to be done to achieve compliance

Course Synopsis:

The syllabus comprises three main parts, each sub-sections.

• Context - this will address the origins of and reasons for the Act together with consideration of privacy in general.
• Law – Data Protection Act - this will address the main concepts and elements of the Act and subordinate legislation.
• Application - this will consider how compliance is achieved and how the Act works in practice.

Data Protection Impact Assessment (DPIA) is a mandatory risk assessment process under GDPR and other data protection laws, aimed at identifying and mitigating risks to individuals' personal data in high-risk processing activities.

This instructor-led, live training (online or onsite) is aimed at intermediate-level professionals who wish to understand and conduct DPIAs to ensure data privacy compliance and mitigate risks in data processing projects.

By the end of this training, participants will be able to:

• Understand the legal and regulatory context of DPIAs.
• Determine when a DPIA is required and how to scope it effectively.
• Conduct a full DPIA lifecycle from initiation to documentation and review.
• Integrate DPIA practices into broader data governance frameworks.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation using real-world scenarios.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

Microsoft System Center Data Protection Manager (DPM) is Microsoft’s enterprise backup and recovery solution for protecting workloads such as file servers, databases, and virtual machines.

This instructor-led, live training (online or onsite) is aimed at intermediate-level IT professionals who wish to deploy, configure, and manage DPM to protect data and ensure business continuity.

By the end of this training, participants will be able to:

• Install and configure DPM servers and agents.
• Create and manage protection groups.
• Perform backup and recovery operations.
• Integrate DPM with other disaster recovery solutions.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.

This one-day course is for people looking for a brief outline of the GDPR – General Data Protection Regulations coming out May 25, 2018. This is ideal for managers, department heads, and employees who need to understand the basics of the GDPR.

This course is developed primarily with focus on auditors and other administrative roles who are
tasked to ensure compliance of their control systems and IT environment with prevailing laws and
regulations. The course will begin by giving understanding of key GDPR concepts as well as how it is
going to affect the work performed by auditors. Participants will also explore data subjects rights,
data controllers and processors obligations, and enforcement and compliance notions in the
context of the Regulation. The training will also cover the audit program provided by ISACA that will
enable auditors to review GDPR governance and response mechanisms as well as supporting
processes which can help manage the risk associated with noncompliance.

This is more in-depth and would be for those working a great deal with the GDPR and who may be appointed to the GDPR team. This would be ideal for IT, human resources and marketing employees, and they will deal extensively with the GDPR.

This instructor-led, live training in 日本 (online or onsite) is aimed at developers and administrators who wish to produce software and products that are HiTRUST compliant.

By the end of this training, participants will be able to:

• Understand the key concepts of the HiTrust CSF (Common Security Framework).
• Identify the HITRUST CSF administrative and security control domains.
• Learn about the different types of HiTrust assessments and scoring.
• Understand the certification process and requirements for HiTrust compliance.
• Know the best practices and tips for adopting the HiTrust approach.

Description:

This is a 'Practitioner' course and leans heavily on practical exercises designed to reinforce the concepts being taught and to build the delegates' confidence in implementing business continuity management. The course is also designed to encourage debate, and the sharing of knowledge and experience between students.
Delegates will benefit from the practical and extensive experiences of ours trainers who are practicing business continuity management and ISO 22301:2019 specialists.

Delegates will learn how to:

• Explain the need for business continuity management (BCM) in all organisations
• Define the business continuity lifecycle
• Conducting business continuity programme management
• Understand their organisation sufficiently to identify mission-critical impact areas
• Determine their organisation's business continuity strategy
• Establish a business continuity response
• Exercise, maintain and review plans
• Embed business continuity in an organisation
• Define terms and definitions appropriate to business continuity

By the end of the course, delegates will have a detailed understanding of all the key components of business continuity management and be able to return to their work, making a significant contribution to the business continuity management process.

Purpose of the Training

• Acquainting the audience with systematized, comprehensive issues of the functioning of personal data protection on the basis of Polish and European law
• Providing practical knowledge about the new rules for the processing of personal data
• Presentation of the areas of the greatest legal risks in connection with the entry into force of the GDPR
• Practical preparation for independent performance of the duties of a Personal Data Protection Officer

Purpose of the Training

• Gaining practical knowledge on how to perform the tasks of the Inspector
• Gaining practical knowledge of how to audit and how to assess risk
• Providing practical knowledge about the new rules for the processing of personal data

This instructor-led, live training in 日本 (online or onsite) is aimed at intermediate-level to advanced-level compliance officers, legal teams, and data protection professionals who wish to ensure their organization’s SAR process is efficient, compliant, and risk-free.

By the end of this training, participants will be able to:

• Understand the legal framework governing SARs.
• Process SARs efficiently while maintaining compliance.
• Identify exemptions and limitations under data protection laws.
• Handle complex SAR scenarios, including third-party data.
• Implement best practices for SAR documentation and response.

This course covers the basic concepts of security and IT Security, with an emphasis on defending against network attacks. Participants will gain an understanding of essential security protocols and security concepts of web services. Recent attacks against cryptosystems and some recent related vulnerabilities will be referrenced

Veritas Backup Exec is a unified data protection solution for virtual, physical, and cloud environments.

This instructor-led, live training (online or onsite) is aimed at intermediate-level IT infrastructure professionals who wish to configure and manage Veritas Backup Exec to ensure secure, streamlined, and effective backup and recovery.

By the end of this training, participants will be able to:

• Understand Veritas Backup Exec architecture and features.
• Install and configure a backup solution using Backup Exec.
• Create and manage backup and restore jobs.
• Develop basic backup and recovery strategies.

Format of the Course

• Interactive lecture and discussion.
• Lots of exercises and practice.
• Hands-on implementation in a live-lab environment.

Course Customization Options

• To request a customized training for this course, please contact us to arrange.