Session Description:

•         Data privacy is increasingly becoming a requirement of every organization.
•         Privacy, Security and IT leaders continue to struggle to develop strong privacy programs despite looming regulatory pressure.
•         Leaders must translate legal obligations into actionable guidance for the organization.
•         Overview of how to establish a comprehensive organization-wide privacy program using a MICAS (measurable, integrated, consistent, actionable, and scalable) approach.
•         Operationalize your data protection initiatives and comply with applicable privacy regulations in the most cost-effective way.

We Will Cover the Following:

•         Privacy and Security leaders need to see privacy as more than just compliance, but rather as a driver of business efficiency.
•         How to best Partner with the business and Legal by speaking their language and providing tools they can understand, implement and support.
•         We will explore privacy policies and standards best practices with respect to how information is collected, processed, shared, and protected within the organization's data lifecycle.
•         Explore how to establish, or fine-tune a holistic and integrated privacy program by employing a phased approach.
•         We will review a case study related to a recent Canadian Data Breach
•         We will review the impact in Canada of the Quebec Bill 64 Privacy regulation. 

Speaker Bio:

Fritz Jean Louis, CISSP, CRISC, CIPM, CDPSE

Fritz Jean Louis is a former Chief Information Security Officer for the Globe and Mail.  Fritz is currently a Research Principal in Security and Privacy with the Info-Tech Research Group. Fritz has over 22 years enterprise experience in security and privacy program management, strategy, relationship management, risk management, program execution, and leading and mentoring teams. Throughout his operational tenure he worked in multiple industries including Financial, Oil and Gas, Retail and Telecommunication. 

Fritz has amassed a wide range of practical cyber security experience in organizational information security strategy, design, technical standards, security policy, governance, compliance, and risk management.  Fritz has led numerous enterprise projects and  strategic initiatives in areas including intrusion detection and prevention, endpoint management, security awareness training, security information and event management, data protection, identity and access management, vulnerability management, digital forensics, and cyber incident response.

Fritz holds numerous industry certifications including Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Privacy Manager (CIPM), Certified Data Privacy Solution Engineer (CDPSE), Certified Disaster Management Instructor with the Canadian Red Cross.  He is an active member of the International Information Systems Security Certification Consortium (ISC2) and the Information Systems Audit and Control Association (ISACA) and the International Association of Privacy Professionals (IAPP).  Fritz is also an avid scuba diver and a voracious reader. 

CPE: 4.0 Hrs

Please Note:  There is a cancellation policy in effect