ISACA has released a publication for guidance in implementing the general data protection regulation.
The publication provides a hands-on view of how organizations should approach the challenge of reaching GDPR compliance by the May deadline. The guidance defines what goes into a GDPR program — including identifying and classifying personal data, risk management, governance, internal controls and assurance, security and managing data breaches.
Furthermore, the guide provides insights on how to transition an organization´s initial GDPR program to a full data protection management system (DPMS).
ISACAÂ® is a global association helping individuals and enterprises achieve the positive potential of technology. ISACA equips professionals with the knowledge, credentials, education and community to advance their careers and transform their organizations. ISACA leverages the expertise of its 450,000 engaged professionals in information and cybersecurity, governance, assurance, risk and innovation, as well as its enterprise performance subsidiary, CMMIÂ® Institute, to help advance innovation through technology.