Course Level: Foundational
Duration: 2 evenings (7 Hours Total)
Delivery: Virtual – Live via Microsoft Teams
Dates: December 15 & 17, 2025 (6:00 PM – 9:30 PM ET each evening)
CPEs: 7
Course Overview
Join ISSA-NOVA for an intensive, two-evening workshop designed to provide cybersecurity and privacy professionals with a comprehensive understanding of the NIST Privacy Framework and its application across diverse organizational environments. This workshop delivers a manager-focused exploration of how the NIST Privacy Framework can be used to identify, assess, and manage privacy risks while enabling mission and business needs.
Participants will gain strategic insights into building privacy profiles, evaluating privacy maturity, and integrating privacy considerations into governance, risk management, engineering processes, and the system development lifecycle. The workshop emphasizes real-world use cases, regulatory alignment, and practical methods to strengthen organizational privacy programs and enhance transparency in data processing activities.
Led by Jim Wiggins, ISSA-NOVA President and Founder of the Federal IT Security Institute (FITSI), this program blends expert instruction, demonstrations, hands-on exercises, and collaborative discussions to help privacy and cyber leaders confidently operationalize the NIST Privacy Framework within their organizations.
Course Format
A blended learning experience combining:
- Instructor-led lectures and practical demonstrations
- Interactive discussions and real-world scenario analysis
- Group activities focusing on privacy use cases, risk assessment, and governance
- Practical exercises applying the NIST Privacy Framework to organizational workflows
Course Materials Include:
- Expert Lectures
- Demonstrations
- Hands-on Lab Activities
- Online Additional Resources
A detailed daily schedule will be provided prior to the workshop.
Learning Objectives
By completing this course, participants will be able to:
- Understand the foundational components and structure of the NIST Privacy Framework.
- Explain privacy risk management concepts and their importance in supporting organizational objectives.
- Identify and apply the Privacy Framework Core functions, categories, and subcategories.
- Develop and use Current and Target Privacy Profiles for alignment and self-assessment.
- Assess privacy maturity using the NIST Implementation Tiers and plan for improvement.
- Conduct privacy risk assessments using the NIST Privacy Risk Assessment Methodology (PRAM).
- Integrate privacy governance, accountability mechanisms, and policy development into organizational processes.
- Embed privacy requirements into system engineering and the SDLC.
- Understand and manage ecosystem-wide roles, responsibilities, and risks in data processing environments.
Table of Contents
Module Title
Module 0 – Introduction and Course Overview
Module 1 – Introduction to Privacy and Risk Management
Module 2 – Core Components of the Privacy Framework
Module 3 – Building and Using Profiles
Module 4 – Implementation Tiers and Organizational Maturity
Module 5 – Privacy Risk Assessment and Mitigation
Module 6 – Governance and Accountability
Module 7 – Integrating Privacy into the SDLC
Module 8 – Engaging in the Data Processing Ecosystem
Who Should Attend
This workshop is ideal for:
- Cybersecurity managers and team leads
- Privacy officers and analysts
- Federal and defense IT security personnel
- Security auditors and assessors
- Governance, Risk, and Compliance (GRC) professionals
- Technology leaders preparing to integrate privacy into operations
Pricing
ISSA-NOVA Members: Free
Members of Other ISSA Chapters: $50
Non-Members: $150
Each participant earns 7 CPEs and receives a certificate of completion based on attendance.
Registration
REGISTER: ISSA-NOVA Members Link: https://docs.google.com/forms/d/e/1FAIpQLSd4QeRLsPejfmbt3lwonsDHgZj03ZcyHf8FaF1MpQOE9HGxwQ/viewform?usp=header
REGISTER: Members of Other ISSA Chapters Link: https://square.link/u/iGhDx3ZD
REGISTER: Non-Members Link: https://square.link/u/l1zKclW4
Related Posts
May 14th, 2026 @5:30 PM – Microsoft’s Bob Peters and Michael Williams – From Standards to Strategy: Post‑Quantum Migration Playbook for Security Leaders- Agentic AI for Cybersecurity Professionals Workshop – April 27th and 29th – 6:00 pm to 9:30 pm ET
- May 9th, 2026 @10:00 am to 11:00 am ET – Python & Machine Learning Programming Workshop – 5-Session Professional Development Program
- Spring 2026 – CISSP Certification Prep Course
- NIST AI Risk Management Framework (AI RMF) Workshop – January 26th and 28th, 2026 – 6:00 pm to 9:30 pm ET
- January 15th, 2026 @5:30 PM – Dr. Kyle David on Safeguarding Privacy Across the AI Development Lifecycle
Pingback: ISSA-NOVA Cyber Workshop Series - ISSA-NOVA