If you would like to provide written feedback to inform NIST's work on privacy risk assessments, please email your thoughts to privacyeng [at] nist.gov (privacyeng[at]nist[dot]gov) by Friday, June 30, 2017. The below deck provides discussion questions used during the breakout sessions at the NIST Privacy Risk Assessment Workshop to guide your feedback (slides 15 & 17), along with background slides. Please email us with any questions.
The Privacy Engineering Team
About the workshop: As part of an ongoing series of workshops on privacy engineering and risk management, NIST will host a public workshop on June 5th in Gaithersburg, Maryland on privacy risk assessments. This workshop builds off the concepts introduced in January 2017 in NIST Internal Report 8062 (An Introduction to Privacy Engineering and Risk Management in Federal Systems). Participants will discuss the function of privacy risk assessments as a prerequisite for conducting privacy risk management, and the role of privacy risk models. This discussion will assist NIST in the development of a body of guidance on privacy risk management aligned with NIST guidance on cybersecurity risk management.
Who should attend: System design, security, and privacy engineers, security and privacy officers, and security and privacy subject matter experts should attend this interactive workshop. Public and private sector attendees and academics welcome.
CPE credits: IAPP has approved this workshop for 3.8 CPE credits. See instructions here for obtaining the CPE credit: