This is the first in a series of public workshops NIST is hosting on the development of the Privacy Framework: An Enterprise Risk Management Tool. In this half-day event, on October 16th, in Austin, Texas, attendees will hear from NIST representatives what to expect from the framework development process. They will learn from panels of experts how organizations are currently managing privacy risks, and where the challenges lie. The workshop also will be an opportunity to begin the discussion of how the NIST Privacy Framework can meet organizations’ needs to better protect individuals’ privacy. NIST plans to use the interactive discussions at this workshop as input to an annotated outline of the Privacy Framework. This event takes place just before IAPP’s Privacy. Security. Risk. conference begins! This will be one of several in-person opportunities to engage with NIST on the development of this framework – please sign up for our mailing list to receive announcements about future events. Join the conversation about this workshop using #PrivacyFramework. A recording of this workshop will be posted shortly after the event.
Workshop Inputs: Supplemental, pre-read material (PDF link below)
Expected Workshop Outputs: Annotated outline of the Privacy Framework
For more information regarding this effort, visit the NIST Privacy Framework website.
* Agenda updated on October 11, 2018
Donna Dodson, Chief Cybersecurity Advisor, NIST
Learn about NIST’s objectives and the process for developing the Privacy Framework. Take the opportunity to ask questions of NIST leadership on this effort.
Panelists will share cross-sector perspectives on what needs the Privacy Framework should address, as well as key attributes and structure of an effective privacy framework. Discussion topics will include: characteristics of a risk- and outcome-based privacy framework, creating a framework that’s understandable by non-privacy professionals, and supporting organizations’ ability to operate in different jurisdictions.
Moderator: Marc Groman, Principal, Groman Consulting Group LLC
Panelists will explore practices for inclusion in the NIST Privacy Framework. Panelists will leverage their own experiences implementing different privacy practices and discuss the maturity of these practices, gaps, and how to structure a framework to help advance implementation of better privacy solutions.
Moderator: Rebecca Herold, CEO, The Privacy Professor; Founder, SIMBUS, LLC
Kevin Stine, Chief, Applied Cybersecurity Division, NIST