Course Aim: To ensure that delegates are able to effectively audit the policies, processes and procedures that their organizations have implemented in order to meet the requirements of ISO/IEC 27701:2019, and as defined in their organization’s personal information management system (PIMS).
Course Description: Managing personal information in compliance with the evolving regulatory landscape is complex but cannot be ignored. The protection of an individual’s personal information is one of their fundamental human rights. Laws exist around the world to protect these rights in an environment where business and data related to personal lives are becoming increasingly globalized. Implementing the privacy controls should enable an organization to document evidence on of how it handles the processing of personal information.
ISO/IEC 27701:2019 is designed to help organizations better understand, manage and reduce their risks around personal information. ISO/IEC 27701:2019 is designed to specify requirements and provide guidance for establishing, implementing, maintaining and continually improving a PIMS in the form of an extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy management within the context of your organization.
Once an organization has implemented ISO/IEC 27701:2019, it is imperative that it measures the effectiveness of its implementation efforts to better understand what is working well and where things might be improved. The framework has been designed with flexibility in mind, which will enable organizations to respond to the results of their measuring efforts by making adjustments to their implementation.
By attending this three-day course, you’ll understand why measurement and analysis of the framework implementation is so important and what areas internal audit should focus on to ensure its effectiveness.
This course will provide you with sufficient information on auditing your ISO/IEC 27701:2019 implementation to enable you and your organization to understand, detect, correct and monitor the effectiveness of the framework. You will be provided with a series of practical exercises and class discussions, which will develop your internal audit ability.
How will I benefit?
The benefits of attending this BSI training course include:
- Gaining a greater understanding of the requirements and structure of ISO 27701
- Practicing your internal auditing skills by conducting four detailed process audits
- Understanding what areas of the standard should be audited, and techniques and approaches to consider
- Establishing an understanding of the issues organizations face when maintaining and auditing framework processes
Who should attend?
Anyone who wants to learn:
- The basic requirements and the structure of ISO 27701:2019
- How to audit and assess the effectiveness of an organization’s PIMS designed to conform to ISO/IEC 27701:2019
- Practical techniques and methods which can be adopted in order to effectively audit and maintain a PIMS
The course is applicable to representatives from any size or type of organization who are currently involved in planning, implementing and maintaining a PIMS as per the ISO/IEC 27701:2019 standard.
Prerequisites: The course is aimed at anyone who has already implemented and qualified in auditing management systems such as ISO/IEC 27001, and is interested in gaining experience and knowledge in conducting ISO/IEC 27701:2019 process audits.
Apart from having an understanding of the key principles of auditing, you should already have a good knowledge of ISO/IEC 27001 requirements and the key principles of a personal information management system (PIMS).
What will I learn?
You will be able to:
- Recognize the key operational requirements of ISO/IEC 27701:2019
- Identify what and who should be audited and why
- Determine where to look for evidence when conducting audits
- Determine how to take a pragmatic business-focused approach to auditing your organization against requirements which can be open to interpretation
You will have the skills to:
- Conduct audits of PIMS processes in ISO 27701:2019
- Conduct audits in all aspects of privacy control selection, implementation and effectiveness, with reference to ISO 27701 and ISO 27001.
What's included?
- Detailed course notes and lunch provided
- On completion, you'll be awarded an internationally recognized BSI Training Academy certificate
Contact us
If you have any enquiries, let us know how can we help you.
Call: +91 80815 80815
Email us: info.in@bsigroup.com
