Risk Assessment Tools
Risk Assessment Tools Here Tools Included: Comcast xCompass xCompass is a questionnaire developed from Models of Applied Privacy (MAP) personas so that threat modelers can ask specific and targeted questions covering a range of privacy threats. Each question is linked to a persona, built on top of LINDDUN and NIST Privacy Risk Assessment Methodology. xCompass […]
FAIR Risk Calculator
Access Here Primary Focus Area: Privacy Risk Assessment Brief Description: FAIR Privacy is a quantitative privacy risk framework based on FAIR (Factors Analysis in Information Risk). FAIR Privacy examines personal privacy risks (to individuals), not organizational risks. Included in this tool is a PowerPoint deck illustrating the components of FAIR Privacy and an example based a hypothetical […]
FAIR Institute
The FAIR Institute is a research-driven not-for-profit organization dedicated to advancing the discipline of cyber and operational risk management through education, standards and collaboration. Learn More
GDPR Crosswalk
View Here Details Resource Identifier: GDPR-Regulation 2016/679 Crosswalk by Enterprivacy Consulting GroupSource Name: Regulation (EU) 2016/679 (General Data Protection Regulation)Contributor: Enterprivacy Consulting Group (R. Jason Cronk)Contributor GitHub Username: @privacymaverickDate First Posted: July 2, 2020Date Last Verified or Updated: n/aRelated Documentation: n/aContributor Notes: To make it easier for readers, rather than a single column, I’ve split the GDPR by Chapters and Sections. Methodology I want […]
NIST Privacy Framework Glossary
Terminology is important. You will notice that I use terms in a very deliberate and formal fashion. Using terms in this manner aids in communication and thinking about privacy and the NIST Privacy Framework. The full glossary is available in the NIST Privacy Framework v1.0. NS in this glossary represents non-standardized definitions that are not in the NIST Privacy Framework glossary.
Daniel Solove’s A Taxonomy of Privacy Law Review Article
Read Here University of Pennsylvania Law Review, Vol. 154, No. 3, p. 477, January 2006 GWU Law School Public Law Research Paper No. 129 84 Pages Posted: 16 Feb 2005 Last revised: 6 May 2008 Daniel J. Solove George Washington University Law School Abstract Privacy is a concept in disarray. Nobody can articulate what it means. As […]
Highlighting NIST Privacy and Cybersecurity Workforce Initiatives
Privacy and cybersecurity are two of the hottest job categories in the modern economy. But what knowledge and skills should organizations be looking for? What training should candidates undergo? Join two people from the National Institute of Standards and Technology (NIST) who are leading the efforts to standardize education, training and jobs in the fields of privacy and cybersecurity.
Draft Comments on the NIST Privacy Framework Preliminary Draft by R. Jason Cronk (2019)
I’m posting here my draft comments on the newly released NIST Privacy Framework Preliminary Draft. I welcome feedback here (and personally) before I submit this as a formal comment on to NIST.