PECB Certified ISO/IEC 27701 Lead Implementer

Learning objectives

• Master the concepts, approaches, methods and techniques used for the implementation and effective management of a PIMS.
• Learn about the correlation between ISO/IEC 27701, ISO/IEC 27001, ISO/IEC 27002 and other standards and regulatory frameworks.
• Understand the operation of a PIMS based on ISO/IEC 27701 and its principal processes.
• Learn how to interpret the requirements of ISO/IEC 27701 in the specific context of an organization.
• Develop the expertise to support an organization in effectively planning, implementing, managing, monitoring and maintaining a PIMS.

Course Agenda

Day 1: Introduction to ISO/IEC 27701 and initiation of a PIMS

• Training course objectives and structure
• Standards and regulatory frameworks
• Privacy Information Management System (PIMS)
• Fundamental concepts and principles of information hh
• security and privacy
• Initiation of the PIMS implementation
• Analysis of the ISMS scope and Statement of
• Applicability
• PIMS scope
• Management approval
• Privacy policy
• Privacy risk assessment

Day 2: Planning the implementation of a PIMS

• Privacy impact assessment
• PIMS Statement of Applicability
• Documentation management
• Selection of controls
• Implementation of controls

Day 3: Implementing a PIMS

• Implementation of controls (cont’d)
• Implementation of controls specific for PII processors
• Implementation of controls specific for PII controllers

Day 4: PIMS monitoring, continual improvement and preparation for the certification audit

• Awareness, training, and communication
• Monitoring, measurement, analysis, evaluation, and management review
• Internal audit
• Treatment of non con formities
• Continual improvement
• Preparing for the certification audit
• Certification process and closing of the training course

Day 5: Certification Exam

Prerequisites

ISO/IEC 27001 Foundation Certification or a basic knowledge of ISO/IEC 27001 is recommended.

Educational approach

• This training is based on both theory and practice:
  • Sessions of lectures illustrated with examples based on real cases
  • Practical exercises based on a full case study including role playings and oral presentations
  • Review exercises to assist the exam preparation
  • Practice test similar to the certification exam

Examination and Certification

The “PECB Certified ISO/IEC 27701 Lead Implementer” exam meets all the requirements of the PECB Examination and Certification Program (ECP). The exam covers the following competency domains:

Domain 1: Fundamental principles and concepts of a Privacy Information Management System (PIMS)

Domain 2: Privacy Information Management System controls and best practices

Domain 3: Planning a PIMS implementation based on ISO/IEC 27701

Domain 4: Implementing a PIMS based on ISO/IEC 27701

Domain 5: Performance evaluation, monitoring and measurement of an ISMS based on ISO/IEC 27001

Domain 6: Continuous improvement of a PIMS based on ISO/IEC 27701

Domain 7: Preparing for a PIMS certification audit Examination Rules and Policies.

After successfully completing the exam, you can apply for the credentials shown on the table below. You will receive a certificate once you comply with all the requirements related to the selected credential.

For more information about ISO/IEC 27701 certifications and the PECB certification process, please refer to the Certification Rules and Policies.