Cantitate/Preț
Produs
Total produse
Vezi coșul
Privacy in Practice: Establish and Operationalize a Holistic Data Privacy Program de Alan Tang

Privacy in Practice: Establish and Operationalize a Holistic Data Privacy Program: Security, Audit and Leadership Series

Autor Alan Tang
en Limba Engleză Paperback – mar 2023

În domeniul protecției datelor, tranziția de la conformitatea teoretică la execuția tehnică reprezintă cea mai mare provocare pentru organizațiile moderne. Observăm că, deși reglementările precum GDPR sau CCPA sunt bine documentate juridic, implementarea lor într-un ecosistem dominat de Big Data, IoT și Inteligență Artificială rămâne adesea fragmentată. Privacy in Practice propune o metodologie structurată pentru a transforma aceste directive abstracte în fluxuri operaționale concrete. Subliniem importanța celor 126 de tabele și 90 de ilustrații care servesc drept suport vizual pentru evaluarea riscurilor și stabilirea metricilor de management.

Volumul este organizat logic în patru secțiuni, pornind de la peisajul legislativ global și avansând spre un cadru unificat de protecție a datelor. Credem că valoarea adăugată rezidă în partea a patra, dedicată operațiunilor de confidențialitate, unde sunt detaliate procese critice precum Evaluarea Impactului asupra Confidențialității (PIA), evidența activităților de prelucrare și transferurile transfrontaliere. Complementar titlului Data Privacy de Nishant Bhajaria, care se concentrează pe tehnici de inginerie și arhitectură de sistem, lucrarea lui Alan Tang oferă o perspectivă de guvernanță holistică, făcând legătura între strategia de business și execuția tehnică.

În contextul operei autorului, această carte funcționează ca un ghid de implementare practică ce susține viziunea din Safeguarding the Future. Dacă lucrarea anterioară explora provocările tehnologiilor emergente (Metaverse, blockchain), Privacy in Practice furnizează instrumentele necesare pentru a gestiona riscurile de confidențialitate în activitatea cotidiană a oricărei agenții sau companii, indiferent de mărime.

Citește tot Restrânge

Din seria Security, Audit and Leadership Series

  • Transforming Cybersecurity Audit Practices with Agility and Artificial Intelligence (AI)
    Preț: 43674 lei
  • 20% Cumulative Effect: Cyber Security Guide for Directors and CEOs
    Preț: 37187 lei
  • 20% The Change Agent, Auditor Essentials, and Operational Auditing Three-Book Set
    Preț: 115855 lei
  • 11% Cognitive Hack and Cognitive Risk Set
    Preț: 61524 lei
  • Corporate Defense and the Value Preservation Imperative: Bulletproof Your Corporate Defense Program
    Preț: 39994 lei
  • 20% Implementing Cybersecurity: A Guide to the National Institute of Standards and Technology Risk Management Framework
    Preț: 34801 lei
  • 20% Controlling Privacy and the Use of Data Assets Set
    Preț: 66332 lei
  • 20% The Security Leader’s Communication Playbook: Bridging the Gap between Security and the Business
    Preț: 49393 lei
  • 20% Blockchain for Cybersecurity and Privacy: Architectures, Challenges, and Applications
    Preț: 137387 lei
  • The Security Hippie
    Preț: 31928 lei
  • Radical Reporting: Writing Better Audit, Risk, Compliance, and Information Security Reports
    Preț: 21916 lei
  • 20% Operational Auditing: Principles and Techniques for a Changing World
    Preț: 39908 lei
  • 15% Corporate Governance: A Pragmatic Guide for Auditors, Directors, Investors, and Accountants
    Preț: 43536 lei
  • 20% Rising from the Mailroom to the Boardroom: Unique Insights for Governance, Risk, Compliance and Audit Leaders
    Preț: 51533 lei
  • 20% Artificial Intelligence Perspective for Smart Cities
    Preț: 28849 lei
  • 20% University Auditing in the Digital Era: Challenges and Lessons for Higher Education Professionals and CAEs
    Preț: 50482 lei
  • Practitioner's Guide to Business Impact Analysis
    Preț: 35651 lei
  • 20% Leading the Internal Audit Function
    Preț: 30291 lei
  • 20% Evidence-Based Cybersecurity: Foundations, Research, and Practice
    Preț: 47802 lei
  • 20% Supply Chain Risk Management: Applying Secure Acquisition Principles to Ensure a Trusted Technology Product
    Preț: 125887 lei
  • 20% Operational Assessment of IT
    Preț: 34095 lei
  • 20% Controlling Privacy and the Use of Data Assets - Volume 1: Who Owns the New Oil?
    Preț: 34109 lei
  • 20% Mind the Tech Gap: Addressing the Conflicts between IT and Security Teams
    Preț: 29152 lei
  • Cognitive Hack: The New Battleground in Cybersecurity ... the Human Mind
    Preț: 38939 lei
  • Modern Management and Leadership: Best Practice Essentials with CISO/CSO Applications
    Preț: 31951 lei
  • 20% Software Quality Assurance: Integrating Testing, Security, and Audit
    Preț: 30407 lei
  • 20% The Cybersecurity Body of Knowledge: The ACM/IEEE/AIS/IFIP Recommendations for a Complete Curriculum in Cybersecurity
    Preț: 99179 lei
  • 20% The Complete Guide to Cybersecurity Risks and Controls
    Preț: 96583 lei
  • 20% Auditor Essentials: 100 Concepts, Tips, Tools, and Techniques for Success
    Preț: 47492 lei
  • 20% Security and Auditing of Smart Devices: Managing Proliferation of Confidential Data on Corporate and BYOD Devices
    Preț: 33268 lei
  • 20% Say What!? Communicate with Tact and Impact: What to say to get results at any point in an audit
    Preț: 50996 lei
  • 20% Auditing Information and Cyber Security Governance: A Controls-Based Approach
    Preț: 53383 lei
  • 20% The Auditor’s Guide to Blockchain Technology: Architecture, Use Cases, Security and Assurance
    Preț: 30826 lei
  • Finding Your Granite: My Four Cornerstones of Personal Leadership
    Preț: 33716 lei
  • 20% The Complete Guide for CISA Examination Preparation
    Preț: 28656 lei
  • 20% Next-Generation Enterprise Security and Governance
    Preț: 65295 lei
  • 20% Information System Audit: How to Control the Digital Disruption
    Preț: 46089 lei
  • Cognitive Risk
    Preț: 30317 lei
  • Internal Audit Practice from A to Z
    Preț: 37631 lei
  • 20% Data Analytics for Internal Auditors
    Preț: 36083 lei
  • 20% A Guide to the National Initiative for Cybersecurity Education (NICE) Cybersecurity Workforce Framework (2.0)
    Preț: 40870 lei

Preț: 32763 lei

Preț vechi: 40953 lei
-20%

Puncte Express: 491
Paperback 32763 lei
Hardback 78402 lei

Carte disponibilă

Livrare economică 05-19 mai
Livrare express 18-24 aprilie pentru 4580 lei

 Adaugă în coș

Wish list
Gift list
Am citit!
Adaugă în listă

Specificații

ISBN-13: 9781032125473
ISBN-10: 1032125470
Pagini: 471
Ilustrații: 126 Tables, black and white; 45 Line drawings, black and white; 45 Illustrations, black and white
Dimensiuni: 178 x 254 x 28 mm
Greutate: 0.88 kg
Ediția:1
Editura: CRC Press
Colecția CRC Press
Seria Security, Audit and Leadership Series

Locul publicării:Boca Raton, United States

Public țintă

Postgraduate

De ce să citești această carte

Recomandăm această lucrare profesioniștilor din securitatea informației și ofițerilor de protecție a datelor (DPO) care trebuie să construiască un program de conformitate de la zero. Cititorul câștigă acces la un set complet de instrumente practice, de la politici și proceduri până la metrici de monitorizare. Este o resursă esențială pentru a transforma obligațiile legale în procese de lucru eficiente care să mențină încrederea consumatorilor.

Despre autor

Alan Tang este un expert recunoscut în domeniul securității și confidențialității datelor, autor al mai multor lucrări de referință în cadrul Security, Audit and Leadership Series. Expertiza sa se concentrează pe alinierea strategiilor de business cu securitatea tehnologiilor emergente, precum AI și blockchain. Prin publicațiile sale la CRC Press, Tang oferă cadrelor de conducere și specialiștilor IT metodologii riguroase pentru navigarea într-un peisaj legislativ global tot mai complex, promovând conceptul de „privacy by design”.

Notă biografică

Mr. Alan Tang has extensive experience devoted to privacy and security practices. Dr. Tang specializes in establishing and operationalizing risk-based and actionable privacy frameworks and programs in alignment with global privacy laws, regulations, and standards such as GDPR, CCPA/CPRA, PIPEDA, PIPL, LGPD, GAPP, ISO 27701, and NIST PF, etc. He believes in simplifying, automating, and scaling privacy controls to enable business growth.
Dr. Tang has firsthand experience in implementing an enterprise-wide, unified privacy framework and program for a Fortune 50 international company. The privacy framework has been implemented in 50+ countries through three phases. He has a strong history of working with business leaders in a wide range of privacy-related domains such as privacy strategy and roadmap, PIA and DPIA, privacy policies and procedures, privacy-by-design in SDLC, data subject rights assurance, data retention, data disclosure and sharing, data cross-border transfer, data security protection, privacy awareness training, data breach handling, etc.
Dr. Tang holds a Ph.D. degree in Information Security and an MBA degree. Alan also holds numerous privacy and security designations including FIP, CIPP/E, CIPP/US/C, CIPM, CIPT, CISSP, CISA, PMP, and previously ISO27001LA and PCI DSS QSA.

Descriere scurtă

Privacy is not just the right to be left alone, but also the right to autonomy, control, and access to your personal data. The employment of new technologies over the last three decades drives personal data to play an increasingly important role in our economies, societies, and everyday lives. Personal information has become an increasingly valuable commodity in the digital age.
At the same time, the abundance and persistence of personal data have elevated the risks to individuals’ privacy. In the age of Big Data, the Internet of Things, Biometrics, and Artificial Intelligence, it is becoming increasingly difficult for individuals to fully comprehend, let alone control, how and for what purposes organizations collect, use, and disclose their personal information. Consumers are growing increasingly concerned about their privacy, making the need for strong privacy champions ever more acute.
With a veritable explosion of data breaches highlighted almost daily across the globe, and the introduction of heavy-handed privacy laws and regulatory frameworks, privacy has taken center stage for businesses. Businesses today are faced with increasing demands for privacy protections, ever-more complex regulations, and ongoing cybersecurity challenges that place heavy demands on scarce resources. Senior management and executives now acknowledge privacy as some of the biggest risks to the business.
Privacy, traditionally, has existed in a separate realm, resulting in an unintentional and problematic barrier drawn between the privacy team and the rest of the organization. With many regulatory frameworks to consider, building an all-encompassing data privacy program becomes increasingly challenging. Effective privacy protection is essential to maintaining consumer trust and enabling a robust and innovative digital economy in which individuals feel they may participate with confidence.
This book aims at helping organizations in establishing a unified, integrated, enterprise-wide privacy program. This book is aiming to help privacy leaders and professionals to bridge the privacy program and business strategies, transform legal terms and dead text to live and easy-to-understand essential requirements which organizations can easily implement, identify and prioritize privacy program gap initiatives and promote awareness and embed privacy into the everyday work of the agency and its staff.

Cuprins

Part 1: Privacy Basics and Landscape, 1. Privacy Concept and a Brief History, 2. Legal Systems, World Models, and Landscape, 3. GDPR, CCPA/CPRA, PIPL and PIPEDA, 4. Privacy Best Practices, Standards, and Certifications, Part 2: Business Impact and a Holistic Framework, 5. Data Protection Drivers and Challenges, 6. Unified Data Protection Framework, 7. Privacy Program Assessment and Roadmap, 8. Privacy Program Management Metrics and Tools, Part 3: Privacy Governance, 9. Data Protection Legal Mandate and Business Requirements, 10. Governance Structure and Responsibilities, 11. Privacy Policies and Procedures, 12. Privacy Awareness, Training, and Engagement, Part 4: Privacy Operations, 13. Privacy Impact Assessment (PIA), 14. Record of Processing Activities, 15. Privacy Notice, 16. Lawful Basis, 17. Data Collection, 18. Data Usage and Maintenance, 19. Personal Data Sharing, 20. Data Residency and Cross-Border Transfers, 21. Data Retention and De-Identification, 22. Security of Personal Data Processing, Part 5: High-Risk Business Scenarios, 23. PbD in Marketing Practices, 24. Workforce Data Protection, 25. Protection of Children’s Data, 26. PbD for AI Solutions, Part 6: Data Breach Handling and DPA Cooperation, 27. Data Subject Rights, Inquiries, and Complaints, 28. Data Breach Handling, 29. DPA Cooperation

Recenzii

“This book serves as a valuable resource for anyone seeking to understand and navigate the complexities of data privacy. Its comprehensive approach and clear explanations make it an essential guide for organizations of all sizes working to establish and maintain robust data protection practices.”
- Dr Mike Brass (CISSP, CIPPE/E, CISM, CRISC)
 
See Mike’s full review at: https://www.linkedin.com/pulse/review-privacy-practice-dr-mike-brass-cissp-cippe-e-cism-crisc--qfqie/?trackingId=CJypYojXzvq1GpauDJH13A%3D%3D
Privacy is a slippery term that people drag out for various reasons, some of which can be misleading. For instance, most American citizens believe that the Fourth Amendment guarantees their right to privacy and will cite it as such. Newsflash, it doesn’t. The Fourth Amendment protects citizens from unreasonable search and seizure by the United States government. It does not guarantee that – for instance – your personal data won’t be harvested and used for all sorts of nefarious purposes by shadowy entities in the data mining industry. Thus, for the sake of self-protection, if for no other reason, everybody in the digital age needs to know what privacy is, its implications, and its applications.
 
The problem arises from the fact that most of the concepts about privacy are rooted in the universe that existed prior to the commercial Internet. That world doesn’t exist anymore, and it hasn’t for some time. The other problem is simple ignorance. We don’t understand the many vital nuances of privacy or what it means to us in terms of personal impacts. But, fear not… Alan Tang has covered the waterfront in “Privacy in Practice.” This comprehensive guide doesn’t simply discuss the general concept of privacy. It defines it from every possible cultural perspective and then proceeds to summarize its various incarnations in worldwide regulations and standards, leaving no stone unturned.
 
Then Tang gets serious about operationalizing the term. In effect, privacy has always been one of those lightweight concepts that everybody agrees is a good idea, but nobody has the slightest notion about how to substantively implement. The book provides a complete and highly credible, holistic architecture of standard real-world controls that can be handily tailored into a governance framework suitable to any general organizational application. The beauty of this book is that it provides nine chapters of explicit operational implementation advice, which ought to be sufficient to assure privacy in any organization of any size. Then, if you still aren’t getting the picture, he provides case examples to illustrate how this can be done in various settings, as well as the practical operational steps to ensure it. So, when you finish this book, you will be as knowledgeable about privacy as any of the world’s leading experts, which Tang just happens to be. Is that a coincidence? I think not.
 
- Dan Shoemaker, PhD - Distinguished Visitor of the Institute of Electrical and Electronics Engineers (IEEE) & Member of the Editorial Board, Computers and Security