Certificate Program in Privacy, Incident Response, and Cyber Conflict

    Campus

    Madrid

    Start

    January

    End

    May

    Duration

    3,5 months

    Language

    English

    Format

    In person / online

SCHEDULE AND ACADEMIC PROGRAM

In-person classes 

First session

  • 0900 – 1000:  Welcome and Keynote Speaker
  • 1015 – 1330:   Privacy and the GDPR
    • Professor(s):  Susana Rodríguez Ballano
    • Core data protection principles: what is personal data, differences between data controller and data processor, consent vs duty to inform.
    • Privacy and security measures.
  • 1500 – 1700:  Privacy and the GDPR
    • Professor(s):  Susana Rodríguez Ballano
    • What companies do with data? (e.g. risks of processing of data with marketing purposes or disclosure of personal data to third entities or international transfers to companies of the same group).
    • Discussion of the documents required by companies to comply with data protection regulations (privacy policies, IT policies, data mapping, DPIAs, and – if required – a gap analysis).
  • 1715 – 1830 – Privacy and the GDPR
    • Professor(s):  Susana Rodríguez Ballano
    • Overview of the game-changing EU General Data Protection Regulation (GDPR) and its impact on data protection and cybersecurity.

Second session

  • 0900 – 1200:  Privacy and the GDPR
    • Professor(s):  Susana Rodríguez Ballano
    • GDPR implementation, impact on cybersecurity practices, and fines/penalties discussion.
    • Post-Brexit implications for UK adherence to GDPR.
  • 1215 – 1330:  Privacy and the GDPR
    • Professor(s):  Susana Rodríguez Ballano
    • Overview of pertinent laws and regulations, such as the NIS Directive and National CSIRTs, and forecasting future developments and trends.
    • Focus on the EU-U.S. Privacy Shield, and forecasting how the GDPR and Privacy Shield will interact.
  • 1500 – 1815:   Privacy and the GDPR
    • Professor(s):  Susana Rodríguez Ballano
    • Assessment of cybersecurity and privacy regulatory developments in the UK, Asia, Australia, and Latin America.
    • Research paper instructions and meetings.

Third session

  • 0930 – 1230:  Cyber Conflict
    • Professor(s):  Jeffrey Batt
    • Geopolitical risk primer, risk interconnectivity.  Cyber risk and the global economy. 
  • 1400 – 1530:  Cyber Conflict
    • Professor(s):  Jeffrey Batt
    • History of cyber conflict (terrorism, warfare, major nation-state hacks).
    • Emerging threats, critical infrastructure risks.
  • 1530 – 1730:  Cyber Conflict
    • Professor(s):  Adolfo Pedriza
    • History of cyber conflict (terrorism, warfare, major nation-state hacks), defining scope and circumstances of cyber warfare.
  • 1930 – 2230:  Networking Dinner

Fourth session

  • 0900 – 1200:  Cyber Conflict
    • Professor(s):  Marco Antonio Valbuena Farpón
    • Proportionality discussion, assessment of ISIS and other viable threat actors.
    • Cyber intelligence – strategic, operational, tactical.  Nation-state information sharing, attribution issues, public-private disclosure.
  • 1215 – 1330:  Cyber Conflict
    • Professor(s):  Marco Antonio Valbuena Farpón
    • Encryption and law enforcement.
  • 1500 – 1715:  Cyber Conflict
    • Professor(s):  Marco Antonio Valbuena Farpón
    • Risks and policy considerations of using cyber tools offensively
    • Business and nation-state preparedness measures.
    • Research paper instructions and meetings.
  • 1730 – 1830:  Cyber Incident Response
    • Professor(s):  Rafael Pedrera Macías, Adolfo Pedriza
    • Internal corporate roles and responsibilities.  

Fifth session

  • 0900 – 1200:  Incident Response
    • Professor(s):  Rafael Pedrera Macías, Adolfo Pedriza
    • External – legal, forensics, PR, repair/rebuild
  • 1215 – 1345:  Incident Response
    • Professor(s):  Rafael Pedrera Macías, Adolfo Pedriza
    • Overview of first and third-party damages
    • Legal and reputational consequences
  • 1500 – 1845:  Incident Response
    • Professor(s):  Rafael Pedrera Macías, Adolfo Pedriza
    • U.S. vs. EU incident response practices, revisiting impact of GDPR on reporting requirements for U.S. and EU companies.
    • In-class exercise / role play – incident response scenario.
    • Research paper instructions and meetings.

eLearning 

  • Privacy and the GDPR
    • Total course hours:  12 hours (in person), 15 hours (eLearning).  27 hours combined.
  • Cyber Conflict
    • Total course hours:  13 hours (in person), 12 hours (eLearning).  25 hours combined.
  • Incident Response
    • Total course hours:   9 hours (in person), 15 hours (eLearning).  24 hours combined.

ADMISSION PROCESS

WE CALL YOU

Centros colaboradores Deloitte  Deloitte CyberSoc