book

CDPSE Certified Data Privacy Solutions Engineer All-in-One Exam Guide

Name: CDPSE Certified Data Privacy Solutions Engineer All-in-One Exam Guide
Author: Peter H. Gregory
ISBN: 9781260474831

by Peter H. Gregory

March 2021

Beginner to intermediate

400 pages

14h 6m

English

McGraw-Hill

Read now

Unlock full access

Cover
About the Author
Title Page
Copyright Page
Dedication
Contents at a Glance
Contents
Acknowledgments
Introduction
Part I Privacy Governance

Chapter 1 Governance
Introduction to Privacy GovernancePrivacy Governance InfluencersReasons for Privacy GovernancePrivacy and Security Governance Activities and ResultsBusiness AlignmentMonitoring Privacy ResponsibilitiesPrivacy Governance MetricsPrivacy Strategy DevelopmentStrategy ObjectivesControl FrameworksRisk ObjectivesStrategy ResourcesPrivacy Program Strategy DevelopmentStrategy ConstraintsChapter ReviewQuick ReviewQuestionsAnswers
Chapter 2 Management
Privacy Roles and ResponsibilitiesBoard of DirectorsExecutive ManagementPrivacy and Security Steering CommitteesBusiness Process and Business System OwnersCustodial ResponsibilitiesChief Privacy OfficerChief Information Security OfficerSoftware DevelopmentData ManagementNetwork ManagementSystems ManagementOperationsPrivacy OperationsSecurity OperationsPrivacy AuditSecurity AuditService DeskQuality AssuranceOther RolesGeneral StaffBuilding a Privacy OperationIdentifying Privacy RequirementsDeveloping Privacy PoliciesDeveloping and Running Data Protection OperationsDeveloping and Running Data Monitoring OperationsWorking with Data SubjectsWorking with AuthoritiesPrivacy Training and AwarenessTraining ObjectivesCreating or Selecting ContentAudiencesNew HiresAnnual TrainingCommunication TechniquesThird-Party Risk ManagementCloud Service ProvidersPrivacy Regulation RequirementsTPRM Life CycleAuditing Privacy OperationsPrivacy Audit ScopePrivacy Audit ObjectivesTypes of Privacy AuditsPrivacy Audit PlanningPrivacy Audit EvidenceAuditing Specific Privacy PracticesAudit StandardsPrivacy Incident ManagementPhases of Incident ResponsePrivacy Incident Response Plan DevelopmentPrivacy Continuous ImprovementChapter ReviewQuick ReviewQuestionsAnswers
Chapter 3 Risk Management
The Risk Management Life CycleThe Risk Management ProcessRisk Management MethodologiesAsset IdentificationAsset ClassificationAsset ValuationThreat IdentificationVulnerability IdentificationRisk IdentificationRisk, Likelihood, and ImpactRisk Analysis Techniques and ConsiderationsPrivacy Impact AssessmentsPIA ProcedureEngaging Data Subjects in a PIAThe Necessity of a PIAIntegrating into Existing ProcessesRecordkeeping and ReportingRisks Specific to PrivacyPrivacy ThreatsPrivacy CountermeasuresChapter ReviewQuick ReviewQuestionsAnswers
Part II Privacy Architecture
Chapter 4 Infrastructure
Technology StacksHardwareOperating SystemsDatabase Management SystemsApplication ServersCloud ServicesInfrastructure as a ServicePlatform as a ServiceSoftware as a ServiceServerless ComputingMobile Backend as a ServiceShadow IT and Citizen ITEndpointsLaptop and Desktop ComputersVirtual Desktop InfrastructureMobile DevicesBring-Your-Own ________Zero Trust ArchitectureConnected Devices and Operational TechnologyRemote AccessClient VPNClientless (SSL) VPNSplit TunnelingSystem HardeningHardening PrinciplesHardening StandardsSecurity and Privacy by DesignChapter ReviewQuick ReviewQuestionsAnswers
Chapter 5 Applications and Software
Privacy and Security by DesignSystems Development Life CycleSDLC PhasesSoftware Development RisksAlternative Software Development Approaches and TechniquesSystem Development ToolsAcquiring Cloud-based Infrastructure and ApplicationsApplications and Software HardeningApplication Hardening PrinciplesTesting ApplicationsAPIs and ServicesOnline Tracking and Behavioral ProfilingTracking Techniques and TechnologiesTracking in the WorkplaceTracking PreventionChapter ReviewQuick ReviewQuestionsAnswers
Chapter 6 Technical Privacy Controls
ControlsControl ObjectivesPrivacy Control ObjectivesControl FrameworksCommunication and Transport ProtocolsNetwork MediaNetwork ProtocolsNetwork ArchitectureEncryption, Hashing, and De-identificationEncryptionKey ManagementDe-identificationMonitoring and LoggingEvent MonitoringIdentity and Access ManagementAccess ControlsChapter ReviewQuick ReviewQuestionsAnswers
Part III Data Cycle
Chapter 7 Data Purpose
Data GovernancePolicies and StandardsRoles and ResponsibilitiesControl Objectives and ControlsAssessmentsReportingData InventoryData ClassificationData Classification LevelsData Handling StandardsData Loss Prevention AutomationSystem and Site ClassificationData Quality and AccuracyData Flow and Usage DiagramsData Use LimitationData Use GovernanceExternal Privacy PolicyData AnalyticsChapter ReviewQuick ReviewQuestionsAnswers
Chapter 8 Data Persistence
Data MinimizationCollecting Only Required FieldsCollecting Only Required RecordsDiscarding Data When No Longer NeededMinimizing AccessMinimizing StorageMinimizing AvailabilityMinimizing RetentionMinimization Through De-identificationData MigrationData StorageData WarehousingData Retention and ArchivingIndustry Data Retention LawsRight to Be ForgottenData ArchivalData DestructionChapter ReviewQuick ReviewQuestionsAnswers
Part IV Appendix and Glossary
Appendix About the Online Content
System RequirementsYour Total Seminars Training Hub AccountPrivacy NoticeSingle User License Terms and ConditionsTotalTester OnlineTechnical Support
Glossary
Index

Overview

This study guide offers 100% coverage of every objective for the Certified Data Privacy Solutions Engineer Exam

This resource offers complete, up-to-date coverage of all the material included on the current release of the Certified Data Privacy Solutions Engineer exam. Written by an IT security and privacy expert, CDPSE Certified Data Privacy Solutions Engineer All-in-One Exam Guide covers the exam domains and associated job practices developed by ISACA®. You’ll find learning objectives at the beginning of each chapter, exam tips, practice exam questions, and in-depth explanations. Designed to help you pass the CDPSE exam, this comprehensive guide also serves as an essential on-the-job reference for new and established privacy and security professionals.

COVERS ALL EXAM TOPICS, INCLUDING:

Privacy Governance
Governance
Management
Risk Management
Privacy Architecture
Infrastructure
Applications and Software
Technical Privacy Controls
Data Cycle
Data Purpose
Data Persistence

Online content includes:

300 practice exam questions
Test engine that provides full-length practice exams and customizable quizzes by exam topic

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

ISACA Certified in Risk and Information Systems Control (CRISC®) Exam Guide

Publisher Resources

ISBN: 9781260474831

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills