Special offers now — see discounted courses.
day
:
hour
:
min
:
sec
See special offers
IAPP Certified Information Privacy Manager (CIPM) Cert Prep

IAPP Certified Information Privacy Manager (CIPM) Cert Prep

7h 33mIntermediate2025-02-27

Authors

Mike Chapple

Mike Chapple

Teaching Professor at the University of Notre Dame

Course details

Explore the Certified Information Privacy Manager (CIPM) certification program, the premier credential for privacy professionals in management roles. In this comprehensive course, Mike Chapple shows you how to develop and manage effective privacy programs that align with business objectives and comply with global, national, and sectoral privacy regulations. Learn how to guide your organization through privacy governance, data protection, and risk management practices. Gain insights into conducting privacy assessments, building privacy awareness, and creating a privacy-conscious culture. Learn practical skills for managing vendors, overseeing privacy audits, and handling privacy incidents. Find out how to leverage privacy metrics to monitor and ensure the continued success of your privacy program. By the end of the course, you will be equipped to lead privacy initiatives within your organization, ensuring regulatory compliance and enhancing the trust of stakeholders.

Learning objectives
Use effective strategies for developing and implementing a privacy program.
Integrate privacy requirements into organizational policies and procedures.
Create a culture of privacy awareness.
Effectively plan for and respond to a data security breach.
Monitor, measure, analyze and audit privacy program performance.

Skills covered

Data PrivacyCert PrepData Science

Concepts

0. Introduction

  • 01 - Certified Information Privacy Manager (CIPM)
  • 02 - Introducing the CIPM program
  • 03 - Is the CIPM right for you
  • 04 - Study resources

1. Inside the CIPM Exam

  • 05 - The CIPM exam
  • 06 - In-person CIPM exam environment
  • 07 - At-home testing
  • 08 - CIPM question types
  • 09 - Exam tips

2. Physical Assessments

  • 10 - Passing the CIPM exam
  • 11 - Continuing education requirements

3. Domain 1 - Privacy Program - Developing a Framework

  • 12 - Overview of the privacy program - Developing a framework

4. Building the Foundation

  • 13 - Privacy operational life cycle
  • 14 - Creating an organizational vision
  • 15 - Organizational structure
  • 16 - Data governance
  • 17 - Maintaining flexibility

5. Defining the Privacy Program

  • 18 - Privacy program development
  • 19 - Scope and charter
  • 20 - Aligning privacy and business objectives
  • 21 - Building a data inventory
  • 22 - Data classification
  • 23 - Interview key employees
  • 24 - Follow data flows
  • 25 - Data sharing and transfers

6. Establishing a Privacy Budget

  • 26 - Developing a privacy budget
  • 27 - Capital vs. operational expenses
  • 28 - Budget monitoring and reporting

7. Building a Privacy Team

  • 29 - Building a privacy team
  • 30 - Privacy roles and reporting structure
  • 31 - Establish a point of contact

8. Communicating Effectively

  • 32 - Building privacy awareness
  • 33 - Communicating about privacy

9. Privacy Regulators

  • 34 - Maintaining a global privacy function
  • 35 - The FTC Act
  • 36 - FTC privacy enforcement actions
  • 37 - FTC security enforcement actions

10. Territorial Regulations

  • 38 - International data transfers
  • 39 - California data privacy law
  • 40 - National data privacy laws

11. Sector Regulations

  • 41 - HIPAA
  • 42 - HITECH
  • 43 - Gramm-Leach-Bliley Act (GLBA)

12. Domain 2 - Privacy Program - Establishing Program Governance

  • 44 - Overview of the privacy program - Establishing program governance

13. Privacy Program Activities

  • 45 - Privacy frameworks
  • 46 - Privacy policy framework
  • 47 - Policy and regulatory monitoring
  • 48 - Privacy impact assessments
  • 49 - Remediation oversight
  • 50 - Program assurance
  • 51 - Inquiry and complaint handling
  • 52 - Communicating the framework

14. Identifying Data and Roles

  • 53 - Collection point identification
  • 54 - Privacy roles and responsibilities

15. Privacy Metrics

  • 55 - Privacy metrics
  • 56 - Compliance metrics
  • 57 - Privacy program maturity

16. Domain 3 - Privacy Program Operational Life Cycle - Assessing Data

  • 58 - Overview of the privacy program operational life cycle - Assessing data

17. Documenting the Current Baseline

  • 59 - Evaluating privacy practices
  • 60 - Data life cycle
  • 61 - Evaluating policy compliance
  • 62 - Evaluating privacy program components

18. Processors and Third-Party Vendor Assessment

  • 63 - Managing vendor relationships
  • 64 - Leveraging relationships
  • 65 - Vendor agreements
  • 66 - Vendor information management

19. Physical Assessments

  • 67 - Facility risks
  • 68 - Design for physical security
  • 69 - Visitor management
  • 70 - Physical security personnel

20. Host Security

  • 71 - Operating system security
  • 72 - Malware prevention
  • 73 - Mobile device security
  • 74 - Mobile device tracking
  • 75 - Embedded systems

21. Forensic Techniques

  • 76 - Conducting investigations
  • 77 - Evidence types
  • 78 - Introduction to forensics
  • 79 - Chain of custody
  • 80 - eDiscovery

22. Mergers, Acquisitions, and Divestitures

  • 81 - Understanding mergers, acquisitions, and divestitures
  • 82 - Mergers and acquisition (M&A) privacy risks

23. Domain 4 - Privacy Program Operational Life Cycle - Protecting Personal Data

  • 83 - Overview of the privacy program operational life cycle - Protecting personal data

24. Information Security Principles

  • 84 - Security and privacy
  • 85 - The goals of information security
  • 86 - Need to know and least privilege
  • 87 - Separation of duties

25. Risk Management

  • 88 - Understanding risks
  • 89 - Risk assessment
  • 90 - Risk treatment
  • 91 - Selecting security controls

26. Identity and Access Management

  • 92 - Authentication and authorization
  • 93 - Password security
  • 94 - Multifactor authentication
  • 95 - Account and privilege management
  • 96 - Account monitoring
  • 97 - Provisioning and deprovisioning
  • 98 - Authorization

27. Security Governance

  • 99 - Regulations and laws
  • 100 - Security policy framework
  • 101 - Best practice security policies

28. Threat Identification and Prevention

  • 102 - Port scanners
  • 103 - Vulnerability scanners

29. Data Security

  • 104 - Understanding encryption
  • 105 - Logging and monitoring
  • 106 - Data anonymization
  • 107 - Data obfuscation

30. Security Awareness and Training

  • 108 - Social engineering
  • 109 - Impersonation attacks
  • 110 - Security awareness training

31. Privacy by Design

  • 111 - Privacy by design
  • 112 - Development methodologies
  • 113 - Maturity models
  • 114 - Change management

32. Domain 5 - Privacy Program Operational Life Cycle - The Sustain Stage

  • 115 - Overview of the privacy program operational life cycle - Sustaining program performance

33. Monitoring the Privacy Environment

  • 116 - Privacy program monitoring
  • 117 - Environment monitoring
  • 118 - Regulatory landscape monitoring
  • 119 - Compliance monitoring
  • 120 - Monitoring technical controls
  • 121 - Privacy metrics
  • 122 - Ethical use of artificial intelligence (AI)

34. Auditing

  • 123 - Privacy audits
  • 124 - Aligning privacy operations with audit
  • 125 - Audit focus
  • 126 - Targeted training

35. Privacy Assessments and Documentation

  • 127 - Privacy threshold analysis (PTA)
  • 128 - Privacy assessments

36. Domain 6 - Privacy Program Operational Life Cycle - The Respond Stage

  • 129 - Overview of the privacy program operational life cycle - Responding to requests and incidents

37. Data Subject Rights

  • 130 - Legal compliance
  • 131 - Access and the right to be informed
  • 132 - Data integrity and redress
  • 133 - Right of erasure
  • 134 - Control over use
  • 135 - Handling information requests

38. Incident-Response Planning

  • 136 - Build an incident-response program
  • 137 - Building an incident oversight team
  • 138 - Incident communications plan

39. Incident Identification

  • 139 - What is a privacy incident
  • 140 - Incident identification
  • 141 - Coordinating detection capabilities
  • 142 - Escalation and notification
  • 143 - Reporting privacy incidents

40. Incident Handling

  • 144 - Incident-handling process
  • 145 - Containment
  • 146 - Remediation
  • 147 - Post-incident activities

41. Business Continuity

  • 148 - Business-continuity planning
  • 149 - Disaster recovery

42. What's Next

  • 150 - Preparing for the exam

Related courses

Related learn paths

About us

LyndaKade is a leading learning platform that helps people learn business, software, technology, and creative skills to achieve personal and professional goals.

Phone numberAparat ChannelTelegram SupportTelegram ChannelInstagram Page

All rights to this site belong to LyndaKade.

Terms of Service|Privacy Policy

نماد الکترونیک enamad در صورت اتصال با آی‌پی داخل کشور، نمایش داده خواهد شد.
logo-samandehi - لوگو ساماندهی
zarinpal
zibal