The handling of sensitive information remains one of the key concerns for organizations. Recent events regarding the disclosure of client-related data in the banking sector have again underlined the importance of this subject. Significant reputational risks and financial penalties are often the direct effects organizations face when confronted with data loss.
Modern technologies facilitate the storage, transmission and duplication of data. Due to the ever increasing volumes of information handled by organizations as well as its borderless flow through a greater number of channels, the challenge of safeguarding information has become increasingly complex. Furthermore, changing operating models of organizations (e.g. outsourcing of non-core activities) also require the transmission of information to external entities.
Regulatory requirements on the other hand demand an adequate level of protection with regards to sensitive data which is captured, processed, transmitted or archived. Information Security Officers aim to strike the right balance between several objectives: the provision of adequate security measures, while minimizing the interference with the organizations business processes and compliance with regulatory requirements. While a number of technical solutions are available which are supposed to mitigate the risk of data loss (e.g. content-aware DLP suites), their implementation is only one element in a holistic approach to be taken by organizations who seek to improve their ability to protect their sensitive data. In this respect, organizations face the following challenges and questions:
To assist you in these challenges, PwC's Academy is pleased to offer a dedicated training workshop which provides participants with an overview of different scenarios requiring the handling of sensitive data, applicable regulatory requirements as well as an approach to better manage the handling of sensitive data within your organization.
Classroom based: 650.00 €
Webinar: 300 €
Classroom based: 4h
Number of participants: 20
By the end of this training, the participants will be able to:
Section 1: Introduction: Setting the scene
Section 2: Context: Why organizations need to handle sensitive data
Section 3: Identification of risks related to the handling of sensitive data
Section 4: Regulatory requirements: Responsibilities of organizations handling sensitive data
Section 5: A practical approach to safeguarding sensitive data
Section 6: Outlook - preparing for the future
This training is coordinated by Florian Bewig, Director in Risk Assurance Advisory Services, PwC Luxembourg. The different sessions will be presented by PwC IT audit and tax experts.
Florian is a Director in the Risk Assurance Advisory Services where he mainly focuses on Information Technology internal control and regulatory compliance engagements. lorian is a Director in the Risk Assurance Advisory Services where he mainly focuses on Information Technology internal control and regulatory compliance engagements.
Since he joined PricewaterhouseCoopers in 2001, Florian has specialised in the review of internal controls mainly in the context of statutory audit assignments and third-party assurance engagements for financial institutions. Florian is also specialized in assessing the feasibility of IT-sourcing projects, both from a regulatory as well as operational point of view.
Florian is also providing technical trainings on an ongoing basis to both colleagues and clients, covering areas such as developing an IT audit approach, protection of sensitive data and regulatory requirements regarding IT outsourcing.
PwC's Academy, Crystal Park Building, PwC Luxembourg
Tel: +352 49 48 48 4040