已获得cdpse认证? 登录myisaca

CDPSE考试包括哪些内容?

注册数据隐私解决方案工程师® (CDPSE®) exam consists of 120 questions covering 3 job practice domains, all testing your knowledge and ability on real-life job practices leveraged by expert professionals.

Below are the key domains, subtopics and tasks candidates will be tested on:

34%
Domain 1 >

隐私治理
36%
Domain 2 >

隐私的架构
30%
Domain 3 >

数据生命周期
拿到你的考生指南 获取备考材料
Illustration of a certificate on the wall with man in front

ISACA的承诺

自2020年成立以来, 超过16个,000 people have obtained ISACA’s CDPSE certification to validate their expertise in the technical skills and knowledge it takes to assess, 构建和实施全面的隐私解决方案. 该域, subtopics and tasks are the results of extensive research, feedback and validation from subject matter experts and prominent industry leaders from around the globe.

Job practice areas tested for and validated by a CDPSE certification

34%域1 -隐私治理(治理、管理) & 风险管理)

识别 issues requiring remediation and opportunities for process improvement.

  • 识别 the internal and external privacy requirements specific to the organization's governance and risk management programs and practices.
  • 参与隐私政策的评估, programs and policies for their alignment with legal requirements, regulatory requirements and/or industry best practices.
  • Coordinate and/or perform privacy impact assessments (PIA) and other privacy-focused assessments.
  • Participate in the development of procedures that align with privacy policies and business needs.
  • Implement procedures that align with privacy policies.
  • Participate in the management and evaluation of contracts, service levels and practices of vendors and other external parties.
  • Participate in the privacy incident management process.
  • Collaborate with cybersecurity personnel on the security risk assessment process to address privacy compliance and risk mitigation.
  • Collaborate with other practitioners to ensure that privacy programs and practices are followed during the design, 系统的开发和实施, 应用程序和基础设施.
  • Develop and/or implement a prioritization process for privacy practices.
  • Develop, monitor and/or report performance metrics and trends related to privacy practices.
  • Report on the status and outcomes of privacy programs and practices to relevant stakeholders.
  • Participate in privacy training and promote awareness of privacy practices.
  • 识别 issues requiring remediation and opportunities for process improvement.

36%域2 -隐私架构

Collaborate with other practitioners to ensure that privacy programs and practices are followed during the design, 系统的开发和实施, 应用程序和基础设施.

  • Coordinate and/or perform privacy impact assessment (PIA) and other privacy-focused assessments to identify appropriate tracking technologies and technical privacy controls.
  • Participate in the development of privacy control procedures that align with privacy policies and business needs.
  • Implement procedures related to privacy architecture that align with privacy policies.
  • Collaborate with cybersecurity personnel on the security risk assessment process to address privacy compliance and risk mitigation
  • Collaborate with other practitioners to ensure that privacy programs and practices are followed during the design, 系统的开发和实施, 应用程序和基础设施.
  • Evaluate the enterprise architecture and information architecture to ensure it supports privacy by design principles and considerations.
  • Evaluate advancements in privacy-enhancing technologies and changes in the regulatory landscape.
  • 识别, validate and/or implement appropriate privacy and security controls according to data classification procedures.

30%域3 -数据生命周期

Participate in the development of data lifecycle procedures that align with privacy policies and business needs.

  • 识别 the internal and external privacy requirements relating to the organization's data lifecycle practices.
  • Coordinate and/or perform privacy impact assessments (PIA) and other privacy-focused assessments relating to the organization’s data lifecycle practices.
  • Participate in the development of data lifecycle procedures that align with privacy policies and business needs.
  • Implement procedures related to data lifecycle that align with privacy policies.
  • Collaborate with other practitioners to ensure that privacy programs and practices are followed during the design, 系统的开发和实施, 应用程序和基础设施.
  • Evaluate the enterprise architecture and information architecture to ensure it supports privacy by design principles and data lifecycle considerations.
  • 识别, validate and/or implement appropriate privacy and security controls according to data classification procedures.
  • 设计, implement and/or monitor processes and procedures to keep the inventory and dataflow records current.

支持任务

  1. 识别 the internal and external requirements for the organization’s privacy programs and practices.
  2. 参与隐私政策的评估, programs and policies for their alignment with legal requirements, 法规要求和行业最佳实践.
  3. Coordinate and/or perform privacy impact assessment (PIA) and other privacy-focused assessments.
  4. Participate in the development of procedures that align with privacy policies and business needs.
  5. Implement procedures that align with privacy policies.
  6. Participate in the management and evaluation of contracts, service levels and practices of vendors and other external parties.
  7. Participate in the privacy incident management process.
  8. Collaborate with cybersecurity personnel on the security risk assessment process to address privacy compliance and risk mitigation.
  9. Collaborate with other practitioners to ensure that privacy programs and practices are followed during the design, 系统的开发和实施, 应用程序和基础设施.
  10. Evaluate the enterprise architecture and information architecture to ensure that it supports privacy by design principles and considerations.
  11. Evaluate advancements in privacy-enhancing technologies and changes in the regulatory landscape.
  12. 识别, validate and/or implement appropriate privacy and security controls according to data classification procedures.
  13. 设计, implement and/or monitor processes and procedures to keep the inventory and dataflow records current.
  14. Develop and/or implement a prioritization process for privacy practices.
  15. Develop, monitor and/or report performance metrics and trends related to privacy practices.
  16. Report on the status and outcomes of privacy programs and practices to relevant stakeholders.
  17. Participate in privacy training and promote awareness of privacy practices.
  18. 识别 issues requiring remediation and opportunities for process improvement.

为考试做准备

ISACA offers a variety of exam preparation resources including group training, self-paced training and study resources in various languages to help you prepare for your certification exam. Choose what works for your schedule and your studying needs.

访问所有cdpse考试准备材料

下载考试术语表

While studying for your CDPSE exam, explore our lists of terms that will appear on the test. See the terms in English alongside how they will appear in the other languages offered. 

简体中文 |  德国 |  西班牙语