CMMC, ISO/IEC 27001, ISO/IEC 27032, and NIST – What You Need to Know

Webinar

CMMC, ISO/IEC 27001, ISO/IEC 27032, and NIST – What You Need to Know

28/04/2021

MIN READ

New data protection regulations have significantly impacted the way that businesses collect, store, and handle clients’ personal information.

Considering the continuously increasing importance of data protection and privacy in today’s world, businesses should be up to speed with their data privacy policies and procedures.

The webinar will cover:

ISO/IEC 27001 – Information Security FrameworkKey requirements under CCPA, CPRA, GDPR
- ISO/IEC 27005 – Information Security Risk Management
- ISO/IEC 27035 – Information Security Incident Management
- ISO/IEC 22301 & 27031 – Business Continuity Management (BCM)
Alternative Frameworks
- CMMC – Cybersecurity Maturity Model Certification
- NIST CSF Cybersecurity Framework
- ISO/IEC 27032 – Guidelines for Cybersecurity
Supplier Management

Presenters:

Robert is an expert in organizational resilience, information security, data privacy and business continuity. He is a certified PECB ISO/IEC 27001 Senior Lead Auditor and works for more than 35 years in the security field. Robert can look back at a large number of successfully finished projects in different types and sizes of organizations in numerous industries where he held senior management positions. He is currently managing director of CARMAO GmbH as well as the CISO of a university, an insurance company, a bank, a further education institution and a company group for digital transformation in marketing, sales and hosting.

Paul Varela is a cybersecurity expert with 9 years of experience in the space and defense sector. He is related to ISO standards as a PECB trainer but also as an active member of the French delegation to JTC1/SC 27 ISO committee for 27xxx standards and more especially on ISO/IEC 27005 revision. He had the opportunity to work for complex engineering systems to implement in their lifecycle cybersecurity activities such as Risk Management, Incident Response, Business Continuity, Digital Forensics, Vulnerability Management, Audit & Penetration Testing.